Overview

overview

10

Static

static

10

b747c6b460...40.exe

windows7-x64

8

b747c6b460...40.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b747c6b460e7889f3749558f5ff1de40.exe

  • Size

    37KB

  • MD5

    b747c6b460e7889f3749558f5ff1de40

  • SHA1

    0429b693074333b3868999bf729de51b4a99e9fd

  • SHA256

    353997f259516820edcbc36cca00b2cef38392d772590000178f15e048d5283c

  • SHA512

    e662fdd67904f77827e5bc5d0df3948ed8c84adea67fee92496a818e55a02e00449290a14048af7c0bd6725fff4ad6fec80ce2301e42fb4fecd36b812fff8997

  • SSDEEP

    384:9niFqiUF54NLHdayszHdiPZDs2+TZrAF+rMRTyN/0L+EcoinblneHQM3epzXtNC+:8PZdJszHdiRV+NrM+rMRa8Nu7/t

Score
10/10
antilosex2njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

ANtiloseX2

C2

6.tcp.eu.ngrok.io:11080

Mutex

88227111e3dea4cf10bf06162c93a0b9

Attributes
  • reg_key

    88227111e3dea4cf10bf06162c93a0b9

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b747c6b460e7889f3749558f5ff1de40.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections