Overview

overview

10

Static

static

10

f67926b002...53.exe

windows7-x64

8

f67926b002...53.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f67926b0026551d9fb763a161466e453

  • Size

    52KB

  • MD5

    f67926b0026551d9fb763a161466e453

  • SHA1

    9fbf63cbc057253c018a514045c98ad0df9d011d

  • SHA256

    be610d92db81f12ddb3c93b8e26184fdffd4b9909412235f3da71b9729c3ad4e

  • SHA512

    9a420a5c8d6ed0656879e2b26e6ce46019ba3086f5bbfc3fe89b0e529919d0f9cc7c6d001a03c113abda7db6c81f692d903d71f58872c42a317ac4a79d11eee3

  • SSDEEP

    768:Ojz32bk/8IQYUZS7rM+rMRa8NuWJtt1IEjYS2yX/j7KinVEL:Ojz32A0IQYtE+gRJNN7BlZVEL

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

127.0.0.1:5552

Mutex

c2048953f8120874556fa68e4541bb60

Attributes
  • reg_key

    c2048953f8120874556fa68e4541bb60

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f67926b0026551d9fb763a161466e453
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections