General
-
Target
b1ac4450e43fbe20c26616d3e207c1ac.exe
-
Size
37KB
-
MD5
b1ac4450e43fbe20c26616d3e207c1ac
-
SHA1
0b79c3ee45ecf355ecdf863a173882e3eab53909
-
SHA256
6d3d9cec199ecf570a4fe0c21c3a0d09b9dabc36f90b609e854740a4fb6510ce
-
SHA512
8156a765bc51fbfccdf9ec1750f5b39781f717469af2e7f069980711c6b23b87bfea2301d9ec8f27dcc34827bbe7683b5865c92b93d0611c7b4de1602f419dec
-
SSDEEP
384:G3jrUiS6L1G5k2gyk/8If5e/QUZSgKrAF+rMRTyN/0L+EcoinblneHQM3epzXTNX:mjz32bk/8IQYUZS7rM+rMRa8Nu9vt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
tjqvk.kro.kr:8080
Mutex
a1dfd42c3dda09a3375e4e2e0f2678bd
Attributes
-
reg_key
a1dfd42c3dda09a3375e4e2e0f2678bd
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b1ac4450e43fbe20c26616d3e207c1ac.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections