General
-
Target
7d86de2d2e6cd118653666fd446f52370e890e3f72ba30de620abdea1f514822.exe
-
Size
32KB
-
MD5
287fbbbc69050158902e5a297a4693bf
-
SHA1
ac8fea9c0d591a0dc8d46e6e1450e79697c62596
-
SHA256
7d86de2d2e6cd118653666fd446f52370e890e3f72ba30de620abdea1f514822
-
SHA512
a22cf7084ff85567bc482b7da5cf8cd2d78c4b5653c1b87cc23ad3cf1330b836f87300a84fb67a34177a15179ad21218b296c5a35b79fe5b43725cb77e74ea3e
-
SSDEEP
384:Q0bUe5XB4e0X7OZOiaXLilpknDAWTEtTUFQqz9eObbG:VT9BuCjaXWlZwbG
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
patria.duckdns.org:1995
Mutex
654d824fdca24744
Attributes
-
reg_key
654d824fdca24744
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
7d86de2d2e6cd118653666fd446f52370e890e3f72ba30de620abdea1f514822.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections