Overview

overview

10

Static

static

10

NEAS.97a47...30.exe

windows7-x64

10

NEAS.97a47...30.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.97a4733dc52f4d3b2ae16269ddfa3430.exe

  • Size

    93KB

  • MD5

    97a4733dc52f4d3b2ae16269ddfa3430

  • SHA1

    d60c1f1e8dfb3facf696fc4ae2ed7342402dc00c

  • SHA256

    b7cbc7e9209ed4e31a86d603d15867f691239a32c53a95d17eee568361344a20

  • SHA512

    740b71a39b5497896588526498a0f61667e3672f6b24966ed647f3175fce98b092fd8c92440bd9d318d040be4141c375acd56c82022aa79a00ff2fb3968bf93b

  • SSDEEP

    768:cY3+IBD9O/pBcxYsbae6GIXb9pDX2t98PL0OXLeuXxrjEtCdnl2pi1Rz4Rk3SsGZ:aIzOx6baIa9RZj00ljEwzGi1dDuDFgS

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

127.0.0.1:5552
Mutex

e3c8ab1ee6b243aa82b806192ab6ab40

Attributes
  • reg_key

    e3c8ab1ee6b243aa82b806192ab6ab40

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.97a4733dc52f4d3b2ae16269ddfa3430.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections