General
-
Target
2ad44d3a4d6024a04140a501e5df7351.exe
-
Size
37KB
-
MD5
2ad44d3a4d6024a04140a501e5df7351
-
SHA1
94a1e237ee077b22704225016d9b7c54dc482516
-
SHA256
de544fa6de7f86b58ff6e82a682ff8bbcc8dcdaeee61421e720f09a3471f1a72
-
SHA512
777b458b8ec76e13c51ad59384309eda09c2fbb82c846bd36a51ff4cbfcf8cc08a995f2e97891d21ae570c7fb10402edb18ff40d2b40396e24a25e15e603c3b0
-
SSDEEP
384:zDu/T8PgibBjpPu7w9qyMTO1P5IsW+LJbrAF+rMRTyN/0L+EcoinblneHQM3epzH:iQNN9ZMTO1GV+prM+rMRa8NubPt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
6.tcp.eu.ngrok.io:11952
Mutex
af413bb56f73479a5bd1a3e13a279069
Attributes
-
reg_key
af413bb56f73479a5bd1a3e13a279069
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2ad44d3a4d6024a04140a501e5df7351.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections