General
-
Target
3361c7297e14fa259de0b4609a2282e0
-
Size
97KB
-
MD5
3361c7297e14fa259de0b4609a2282e0
-
SHA1
40f73b1afd507762d7374569cff87637c047d822
-
SHA256
67840bd134e0c72f67eaf3bc616f99e327c024379e1ea55a64839d422acb2d6d
-
SHA512
6fd015145dd432b7cb69ccfb47e264f22316c42ec29a3a48c897deda6e5c7e1643a36a28637283c012de93ffda4ccd4a30c543ea0a8e907a0989cd7822ba8070
-
SSDEEP
1536:YxlEf/QQXA3TOa//OoLgjEwzGi1dDH33333333333333333333333333P3333eDx:YxngA3TOa//bLxi1dQW
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
взломан
C2
hakim32.ddns.net:2000
127.0.0.1:5552
Mutex
549a28ed898a575a1ea5c758fa9dc3db
Attributes
-
reg_key
549a28ed898a575a1ea5c758fa9dc3db
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3361c7297e14fa259de0b4609a2282e0
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections