Overview

overview

10

Static

static

10

NEAS.0d2e0...99.exe

windows7-x64

8

NEAS.0d2e0...99.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.0d2e0fcd0d0b7034acb740ce51baa0bec329c0c8547dd7caf2aabb5c91c7dc99.exe

  • Size

    37KB

  • MD5

    36d7f4867b6a352e647390973856ca3a

  • SHA1

    9e106eace4209e68a1c1238a8518fcbd53817ca5

  • SHA256

    0d2e0fcd0d0b7034acb740ce51baa0bec329c0c8547dd7caf2aabb5c91c7dc99

  • SHA512

    0cffe53ec490e846c98fae94b319544c479df3dd9f108145a2668c79bdc89734bf0c63efb83df4fad2b0931bf531fe485a0fd2fdde27e564650acc31ae1af27d

  • SSDEEP

    384:bLe6CiMoB63fbw6ZfrZUy8fUcff0giNUBmrAF+rMRTyN/0L+EcoinblneHQM3epS:uo0DwODZX8fUcklU8rM+rMRa8Nunkt

Score
10/10
hackerdzhamshutnjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HackerDzhamshut

C2

5.tcp.eu.ngrok.io:12153

Mutex

142f60ab35c3c94bada0ccc529040c9e

Attributes
  • reg_key

    142f60ab35c3c94bada0ccc529040c9e

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.0d2e0fcd0d0b7034acb740ce51baa0bec329c0c8547dd7caf2aabb5c91c7dc99.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections