General
-
Target
0x000c000000012339-6.dat
-
Size
65KB
-
MD5
b650c8c9315aecc792b2c71458df969b
-
SHA1
2fb29b1b1bf97f804413b23b964ddfb57aa0e52f
-
SHA256
cb1939e62133f6c50e79b8d378a828abd010cf30c002bc5e470f00db3341117e
-
SHA512
e967c569c169a6d257658f39fd27ab3002015109a45040cf05342e0c99f67e553fd3ddef76de6681989b4a612ecfe4e05c137f0a057ff04f06acc24154ce2f0d
-
SSDEEP
1536:HjWWxoN36tjQviFw1jcCz7BnvbsfLteF3nLrB9z3nzaF9bCS9vM:HjWWxoN36tjQviFCw4Bn4fWl9zjaF9bq
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Platinum
Botnet
2024
C2
127.0.0.1:7077
Mutex
System.exe
Attributes
-
reg_key
System.exe
-
splitter
|Ghost|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0x000c000000012339-6.dat
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections