06ccb03d2f68c04636e29184b6e63a97 | Triage

Submit
Reports

Overview

overview

Static

static

1

06ccb03d2f...97.exe

windows7-x64

06ccb03d2f...97.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

06ccb03d2f68c04636e29184b6e63a97.exe

Resource

win7-20231215-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

06ccb03d2f68c04636e29184b6e63a97.exe

Resource

win10v2004-20231215-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

06ccb03d2f68c04636e29184b6e63a97
Size

219KB
MD5

06ccb03d2f68c04636e29184b6e63a97
SHA1

4a2357f3eed8e2e3d1f5f11c70343f3e985f7403
SHA256

78ad934d1ec28bd3a415e1a4c527e5637ad97a9fe45daaec539e234e91d0b6ff
SHA512

264ac95950bddd0d0f0cb6b4265ede72c31cf95748d15c1bd1d64041aa22d6f595afb4dbce6d3e576ef1e00697886b5319cf99968bdec71d1c0701268e8923a4
SSDEEP

1536:x/OEOFPgAxw0zNSDWCJv1xQlltghBGGuaxyTVh4DeLvo0V0tMmS9mRUZd6OZ4rwY:x/OZPgAxLNSDW+v1xQfteGSxm2UZ6AAr

Score

1^/10

Malware Config

Signatures

Files

06ccb03d2f68c04636e29184b6e63a97
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Certificate

Issuer

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

Not Before

18/06/2015, 05:29

Not After

17/06/2016, 05:29

Subject

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

bb:96:7f:af:93:ba:fe:4c:a7:0e:af:4b:ec:d1:1b:18:14:c5:41:36
Signer

Actual PE Digest

bb:96:7f:af:93:ba:fe:4c:a7:0e:af:4b:ec:d1:1b:18:14:c5:41:36

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy