General
-
Target
fcb5696538ac989746e984d35cc3ad17bbc98bd79919b3b59ccb2f02ca15dfaf
-
Size
93KB
-
MD5
5e78014c88f492f17635d809375338c8
-
SHA1
cc948514ecb502885835f45ff83d3c31f3a65b9c
-
SHA256
fcb5696538ac989746e984d35cc3ad17bbc98bd79919b3b59ccb2f02ca15dfaf
-
SHA512
aeb0ff653edaf111e117fcdd9c29e3875c94d2049290bac321a1da7f071ae1d578078bb421c711d5604aeee7f42c6ffe40a8f8588e8d3cdcb77d1d6b3cf19be2
-
SSDEEP
768:dY3/KBD9O/pBcxYsbae6GIXb9pDX2b98PL0OXLeuXxrjEtCdnl2pi1Rz4Rk3VsG8:EKzOx6baIa9RPj00ljEwzGi1dDlDmgS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
127.0.0.1:5552
Mutex
9156c67542d49d23acbdee529a4f5c13
Attributes
-
reg_key
9156c67542d49d23acbdee529a4f5c13
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
fcb5696538ac989746e984d35cc3ad17bbc98bd79919b3b59ccb2f02ca15dfaf
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections