General
-
Target
64e03ce9d4db10ad22af9fdecf8e750b.exe
-
Size
230KB
-
MD5
64e03ce9d4db10ad22af9fdecf8e750b
-
SHA1
b9fe3564b39f85feac38877320562d345fa31300
-
SHA256
e9cafe0e597dea98a327b31ceb7bcf8a6a90c90d729b6709c0b8819efb53ceec
-
SHA512
815d7f97eb088e3dee422b1fdf7ad9fae6796ad1d7648c46942610d48074042d7d6ea2073ca6d65df86d91b6b8e16c5d03d90a042272c5ea74783f3e62c69ec1
-
SSDEEP
1536:e/gDBnYi9bV1BZV0CbD/csMunng0P5JkcrOGEoUjMJC:e4ZYi9bV1BZV0C3csjnbJkoVBUg8
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v2.0
Botnet
HacKed
C2
79.224.89.201:5552
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
64e03ce9d4db10ad22af9fdecf8e750b.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections