Overview

overview

10

Static

static

10

7.exe

windows10-1703-x64

8

7.exe

macos-10.15-amd64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    7.exe

  • Size

    36KB

  • MD5

    81e97258de4fcf6c7ed5926978206c84

  • SHA1

    08419abaccf6c0d689fa41e09940702f869a227f

  • SHA256

    75731e97c73287dc87fc2ceceac246e67b9b317cd0a51d83c8aa9c7625e66a62

  • SHA512

    3b2760d26752553ad1b78bb33f62b76ecae2d3d2f4ab625cd6b7442bba49db484f1c50df6a0623548e3eb6f37ab21baad3768be52926fa465e8d863c1a1d97ec

  • SSDEEP

    384:rKlayyaik9hkdTnNiybYT81PRsc4jWrbrAF+rMRTyN/0L+EcoinblneHQM3epzXx:GgyCxNxbYT81y1WXrM+rMRa8NuJDetQ

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

0.tcp.eu.ngrok.io:5890

Mutex

c524d8b90664e9f83f0d4a65e77b39a0

Attributes
  • reg_key

    c524d8b90664e9f83f0d4a65e77b39a0

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections