Overview

overview

10

Static

static

10

03CFE21475...54.exe

windows7-x64

10

03CFE21475...54.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03CFE21475FF1E4B334AD89DED81AE54.exe

  • Size

    23KB

  • MD5

    03cfe21475ff1e4b334ad89ded81ae54

  • SHA1

    885cd1d6782f12eba1a8b02ba5e380b43d724ac8

  • SHA256

    b6634d60c4f33e8ff40efbbbddd098cc420fe12822c633752260e3b0e6d11307

  • SHA512

    28361958762f5951c405f664e6891eca9fe735b791702db93599fbf34b50885d95dd8938784423ec4ccb50648a4f8350106b51d8082d43e65fa5371bf3bd9f56

  • SSDEEP

    384:IcqbCK0l4h7o9SVyDGvENuh46/gJkOmMSW38mRvR6JZlbw8hqIusZzZLp:330py6vhxaRpcnuG

Score
10/10
lammernjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Lammer

C2

0.tcp.sa.ngrok.io:12537

Mutex

e71381ce4c6ac23e031048fb1464e9da

Attributes
  • reg_key

    e71381ce4c6ac23e031048fb1464e9da

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 03CFE21475FF1E4B334AD89DED81AE54.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections