General
-
Target
5971ba49b4c2d43bc997cf365e65bf4f
-
Size
54KB
-
MD5
5971ba49b4c2d43bc997cf365e65bf4f
-
SHA1
358c725bb0988022c533f77ee975e39ae516c89d
-
SHA256
702bca106d99148d62af14389cfb74a89a536ff6ced032972720ae232f2393ba
-
SHA512
165011223b363766d4e93b2a78da5b915544469e86e1db3ac5247b540e01eb02d81c7bc77de5888bf779d8c26529f3d4b6bd79f54795451cb92bd149d265269a
-
SSDEEP
768:kW220U0Yl7A/vMHTi9bD6htHnYkFru0w9XXYeA3ebCEvDBkdyIjUle6+Lmmmmmmf:m20ULknYi9bMY2K0w5X8u95Ija
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v2.0
Botnet
HacKed
C2
negah-25309.portmap.io:5552
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5971ba49b4c2d43bc997cf365e65bf4f
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections