Overview

overview

10

Static

static

10

559d282b0b...07.exe

windows7-x64

10

559d282b0b...07.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    559d282b0ba15515ba2b906da3d68f60ec4bcb0934d07d7e922f34909a378707.exe

  • Size

    23KB

  • MD5

    4834daaa2464378474669c26607f8c55

  • SHA1

    0798e7d96aaaa629c232ad4398a307e25013d585

  • SHA256

    559d282b0ba15515ba2b906da3d68f60ec4bcb0934d07d7e922f34909a378707

  • SHA512

    20757819ff1eb2b63155bfbbc983e1e95e4bb0eff6aad703db6cb557f89c6ad26b48ae090367539219dab58b2bf8df2574c7dbde206b60e63c58e5b16d62386d

  • SSDEEP

    384:tY324bcgPiJLQrfARGSRUJsbY6ZgvSMBD3tVmRvR6JZlbw8hqIusZzZo69:CL2s+tRdRpcnudG

Score
10/10
zayan1njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

zayan1

C2

65.0.50.125:22158

Mutex

a4cbdc4b353efef9adf0da32b8aa4cb1

Attributes
  • reg_key

    a4cbdc4b353efef9adf0da32b8aa4cb1

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 559d282b0ba15515ba2b906da3d68f60ec4bcb0934d07d7e922f34909a378707.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections