General
-
Target
00ac004acb70cd430b75866bc27fa3af
-
Size
93KB
-
MD5
00ac004acb70cd430b75866bc27fa3af
-
SHA1
c215ef6ea516a1864b514954f4222f1c0d1e84c6
-
SHA256
348856ab155aa6585ba312e720d8fe47b0f36707230c8d6aa024b6ace04b6e69
-
SHA512
dd5aacdaacdea9dcb5222f32550632b787d081cac5f26930decb447215cbae07ef2f781a1c8c2510ccfd47c3081ac74b4149c0b1e5da2bd7ebdcac9c399ea0d1
-
SSDEEP
1536:lxEQIBlfGQFk2ZonmzLMxjEwzGM/hDNgS:lxCtFk2Zonm/MOyRa
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
KRIPTOR
C2
hakim32.ddns.net:2000
127.0.0.1:8921
Mutex
2c0f6548ab71a911951f4531d96386e6
Attributes
-
reg_key
2c0f6548ab71a911951f4531d96386e6
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
00ac004acb70cd430b75866bc27fa3af
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections