Overview

overview

10

Static

static

10

Nigga Penis.exe

windows7-x64

10

Nigga Penis.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Nigga Penis.exe

  • Size

    45KB

  • MD5

    7a3ef6b12428753a181aca298f6e6feb

  • SHA1

    18863e0a73fb53a20953b1b315548be99a2c5d4f

  • SHA256

    78d9333bb245b5f0c94eb3b2fd8d1537ff7c039c8e11fbcfdbebce857d6a89af

  • SHA512

    fceec6d3ec87d7ec2e5b30b057dab9e5962a9f7fd301fad5a5c8a7b66c1eb348660783b37973f888ca06783b0bdccdc943debfab4f60c21e949bacb5d8cc5e78

  • SSDEEP

    768:ju2n0TckJ26WUsFvgmo2q7NROH7a0AWZzjbfgX3/Twu+AD8yQ4cDZHf+:ju2n0TceH2oRm1TZ3boXvkuB8yQPdHf+

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

Nova Rat

Botnet

Default

C2

hoes-truth.gl.at.ply.gg:56257

Mutex

kchafliNF4Dp

Attributes
  • delay

    3

  • install

    false

  • install_file

    svchost2.exe

  • install_folder

    %AppData%

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Nigga Penis.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections