Overview

overview

10

Static

static

10

bf7c75be0a...60.exe

windows7-x64

7

bf7c75be0a...60.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf7c75be0a37e569259438ffa5170160.exe

  • Size

    75KB

  • MD5

    bf7c75be0a37e569259438ffa5170160

  • SHA1

    9672a4b6cb9d8cbef189e1306d72877645661687

  • SHA256

    10ed0a4d4e59e62c7f91c5d3a88044154fe67ea1d75f2f3bef3d876ce289036e

  • SHA512

    9f32c4557d2b39726e7546c243066bf6b68cb8eb22f8998f47ffe57de169bf28d387791b6b8267fd1af775d52fa2e43a0e00e8b288c00dbffe917662fc38a57b

  • SSDEEP

    1536:lyeLx3fBlTyF9tMFyMQUZDBKafLpHfLjva+x9rru4zSR4cSB:Ae96tcyMQUZDBKapjjvaO9rzSR4tB

Score
10/10
njratnjrat

Malware Config

Extracted

Family

njrat

Version

0.7.3

Botnet

njRAT

C2

0.tcp.eu.ngrok.io:12449

Mutex

dllhost.exe

Attributes
  • reg_key

    dllhost.exe

  • splitter

    1234

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bf7c75be0a37e569259438ffa5170160.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections