General
-
Target
5cd669a32d183b8aa436ae3e66602631
-
Size
37KB
-
MD5
5cd669a32d183b8aa436ae3e66602631
-
SHA1
b8215ccf0f45da965afc79f956a5f330b60339fb
-
SHA256
5ffa02f517181a670c598c7adc23ead3c9b77539a9c1df200fd027c90b1411c3
-
SHA512
92b918352e4d587da03b34f9b7df698310649d8999fea779641c61300419f3abc6a135e65f1e588a3666aaf02a3cdf76b4a7712e0df70c77ba06f67df7b436ca
-
SSDEEP
384:nORKUiDtblmJEpRGyEf7JfJuQCY6idQrAF+rMRTyN/0L+EcoinblneHQM3epzXV:ORiHpR9Ef7JsQCFiGrM+rMRa8NuzAt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
nevermind99.ddns.net:5552
Mutex
40c0d133e4551b3d0ddbd1957c43dbd4
Attributes
-
reg_key
40c0d133e4551b3d0ddbd1957c43dbd4
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5cd669a32d183b8aa436ae3e66602631
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections