Overview

overview

10

Static

static

10

b5c2ed0bbb...b0.exe

windows7-x64

8

b5c2ed0bbb...b0.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b5c2ed0bbbe94e42208a7793ef9153b0

  • Size

    37KB

  • MD5

    b5c2ed0bbbe94e42208a7793ef9153b0

  • SHA1

    2387ad4e61fed213c76c7c97421f0a2109416715

  • SHA256

    076b0079f83cc364fd4e0030dc991b601b6fc2435f06061850a5552f25a34e16

  • SHA512

    690c4d0f5eb7ed4a8fe4e88a1aedf592b7ce659e09b78490150360112d5f6a6dd3637621f06330aeaddca3f27a1654d3e310edda90e7ed3507f5edebb975e880

  • SSDEEP

    384:SYX+UiF8bK7FmpE8QyEfQUvvAfvcgQrAF+rMRTyN/0L+EcoinblneHQM3epzXENj:5Xh2n8LEfQUwXchrM+rMRa8Nu6zt

Score
10/10
손좀비njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

손좀비

C2

172.0.0.1:1

Mutex

fb140d1eb6605e2fc208255a3d063ba2

Attributes
  • reg_key

    fb140d1eb6605e2fc208255a3d063ba2

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b5c2ed0bbbe94e42208a7793ef9153b0
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections