General
-
Target
2eb8399541a38d7411a8da9ad54603f5.exe
-
Size
93KB
-
MD5
2eb8399541a38d7411a8da9ad54603f5
-
SHA1
35bdd684fe0f9b1b77096e4882d5afb548171f65
-
SHA256
5fc26c8d1ce28ed2277905a966ec30e9f157e14cb19fed06deaeac5500add460
-
SHA512
62397820089f1595fa6a994c33bd19ae5b8163496979e7224db945f559100271e0bbbd6107f386bf0d22b44e88aa42f962eb97b527ce75b68542d52541baf07b
-
SSDEEP
768:ZY3OUnD9O/pBcxYsbae6GIXb9pDX2t98PL0OXLeuXxrjEtCdnl2pi1Rz4Rk3ysGZ:NUxOx6baIa9RZj00ljEwzGi1dDuDdgS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
6.tcp.eu.ngrok.io:10298
Mutex
1a33d12f87a2ed3cb967309586bdcce8
Attributes
-
reg_key
1a33d12f87a2ed3cb967309586bdcce8
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2eb8399541a38d7411a8da9ad54603f5.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections