General
-
Target
41112668a52307135b18626a86ccdc1e
-
Size
106KB
-
MD5
41112668a52307135b18626a86ccdc1e
-
SHA1
2c93358b20afc56cc02801cf2995751aa31e70f4
-
SHA256
43e192f938dbbf8463ead4f1b26ed2cf30febe0549713bdc406d6096b9d682b4
-
SHA512
5557869495ba063df78d839aefa3a8eb59c41c1e47f7140d0ffdfaf44e46cd529ca22560dbfacc317aa7117720feed1a30e3e489eb0b4f176b46766125e40afc
-
SSDEEP
1536:INdmJvOWOlKw4XXVmDIX+75173q/P1aed/y4v5v:INc2WOlK5u7z6XAed/nv
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
vitima
C2
hakim32.ddns.net:2000
bunda.ddns.net:6666
Mutex
7169957fb666c6785cd2e6f25d4e4f87
Attributes
-
reg_key
7169957fb666c6785cd2e6f25d4e4f87
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
41112668a52307135b18626a86ccdc1e
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections