General
-
Target
0f641cc9d0557ab567cac4d0b223291d
-
Size
27KB
-
MD5
0f641cc9d0557ab567cac4d0b223291d
-
SHA1
4e4f4e5b18dc7072011ba6ce7a96052cd484fee2
-
SHA256
714d5dcd129cf149bced0ba620b9ac78cdb5124e60a6791b6275978cd06ec28f
-
SHA512
0fdaf9ee540b98cee0321dd9269cce8a0384e762c39d7fb9cbb562dcf5dcb9fc481237559acd0f7f3535afabb02b7f6d39b50f3d89dee3b6fb89878b5ca5672f
-
SSDEEP
384:vL/6Dnw3m4Afp1UDMoCoP6udRNMpAQk93vmhm7UMKmIEecKdbXTzm9bVhcar6HrZ:D/cBvqQpA/vMHTi9bD
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v2.0
Botnet
HacKed
C2
secretprivated.bounceme.net17:80
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0f641cc9d0557ab567cac4d0b223291d
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections