General
-
Target
c2142d50c3548ff44676cd9535df0c1d.exe
-
Size
32KB
-
MD5
c2142d50c3548ff44676cd9535df0c1d
-
SHA1
efdb3a03ee0e669b1b6444e7e27dac87a90f4055
-
SHA256
731fe5753aa8b8dcbf1878ef89045f0ee87ed1da37585cfb483378bcf89a5edf
-
SHA512
0a7e5bce2d963f357da033e78d61bb9fa71fedbbedbfd2b7ebb0e2ff41efe9ebb5c92082cd033ecc7fcc50c03ba2852b0ff31caba2843442e33d962ddf21f32b
-
SSDEEP
384:l0bUe5XB4e0XGOlbHdqlzkB8N/SWTPtTUFQqzFMObbfR:mT9BuVBdKDqbp
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
quintoelemento22.duckdns.org:1111
Mutex
0655d60db98c
Attributes
-
reg_key
0655d60db98c
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
c2142d50c3548ff44676cd9535df0c1d.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections