General
-
Target
3483079188b9a730fc255ac4d8c51f07.exe
-
Size
189KB
-
Sample
240203-y14tksbfgp
-
MD5
3483079188b9a730fc255ac4d8c51f07
-
SHA1
f0ba23547b985524284b34993e6f650cf3fe48f7
-
SHA256
f1400947f65c4f4b6770ca97877b7e6bbfc97deef656e20a064e542e2cd31d79
-
SHA512
81b0e4ca7059ae7c08e26d105c3a7a5911f509723b43318e485828cce6bcfd663220a470dafe4085689707ee2dd86036bb4f9043b0d3b53c77b9dd7fd80ffa75
-
SSDEEP
3072:xBfsGpcW25Gp+VIVnZM0NLsqHjHVcid1gOoVHFxq2YEOnB+llUhckPDfG:LsGckEKnZbDHVPgRUEOB+YJPzG
Static task
static1
Behavioral task
behavioral1
Sample
3483079188b9a730fc255ac4d8c51f07.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3483079188b9a730fc255ac4d8c51f07.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
njrat
0.7NC
NYAN CAT
vinijr27.duckdns.org:3030
a4729d8cd4374
-
reg_key
a4729d8cd4374
-
splitter
@!#&^%$
Targets
-
-
Target
3483079188b9a730fc255ac4d8c51f07.exe
-
Size
189KB
-
MD5
3483079188b9a730fc255ac4d8c51f07
-
SHA1
f0ba23547b985524284b34993e6f650cf3fe48f7
-
SHA256
f1400947f65c4f4b6770ca97877b7e6bbfc97deef656e20a064e542e2cd31d79
-
SHA512
81b0e4ca7059ae7c08e26d105c3a7a5911f509723b43318e485828cce6bcfd663220a470dafe4085689707ee2dd86036bb4f9043b0d3b53c77b9dd7fd80ffa75
-
SSDEEP
3072:xBfsGpcW25Gp+VIVnZM0NLsqHjHVcid1gOoVHFxq2YEOnB+llUhckPDfG:LsGckEKnZbDHVPgRUEOB+YJPzG
Score10/10-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-