General

  • Target

    mjed.exe

  • Size

    27KB

  • MD5

    ccd138adfd7b6c7806ebf5a69fb0ec5d

  • SHA1

    7173bca3c26c25d3948ed8dce5607797500ac3ae

  • SHA256

    9b01b990c37f143b763b4dda75f54a9bff6f916bcee6af8ea7cec7be0481e4b5

  • SHA512

    bcfd77b0f35db7774a4c95ad91f6dd597afd9913139ce2bc9b3bcc013ba5fff74160c71cccd8cdaf240df4f1386bcec7504402488f2408903a8baa3aea479136

  • SSDEEP

    384:oLam4PanO4Y7pcdYGiTOCsPodxxM2AQk93vmhm7UMKmIEecKdbXTzm9bVhcaQ601:W63vc7OQ2A/vMHTi9bD

Score
10/10

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

HacKed

C2

sfg1.ddns.net:1177

Mutex

Windows

Attributes
  • reg_key

    Windows

  • splitter

    |-F-|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • mjed.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections