General

  • Target

    New Client.exe

  • Size

    214KB

  • MD5

    6099ccf232cffee0787b66e03bd2e2fb

  • SHA1

    a160655fe6b2a8dda39f0f72772fb9b463434780

  • SHA256

    de2fed0600ccc08d0c5e151facbe9e21eea3c7e383bfce3872d8b03f5b041270

  • SHA512

    9e834574679681336cdb271b70e122b564d14527d24680c6dc8d41e7676d1803158f225a53a585a062b272d1c41de2962ed5496af1e6ff26421a80cb684ff3a0

  • SSDEEP

    6144:SSJ89zyvMl2B+64kQ2EJam2dNREz9FdOZMJwGuE4QyZom8exsrPR5TE7D0XuDTTt:SEJk2B+64kQHam2dNREz9FdOZMJwGuEu

Score
10/10

Malware Config

Extracted

Family

njrat

Version

Platinum

Botnet

AntiVirus

C2

127.0.0.1:38277

Mutex

Client.exe

Attributes
  • reg_key

    Client.exe

  • splitter

    |Ghost|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • New Client.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections