General
-
Target
bdf6054ecb4d5bea4c20430cb120eb99
-
Size
232KB
-
MD5
bdf6054ecb4d5bea4c20430cb120eb99
-
SHA1
de2ce5e84d829425335c8063e9eae4e629df55b2
-
SHA256
1fc551f7c7510387ffd43a6a8bf40fed8de26cf53e5313773b35252d0330acfe
-
SHA512
d916efc839646f521d7dfed132341c092733b28882baba625268dc112eedd3ad87d0acbbf1ad4afcbad5ea8800240762eb29f71da79fa2920ecf5df8759e98cd
-
SSDEEP
1536:M4hSnYi9bWQvcP1KrP1nfenDKZSyviM1VAs4Q67+MvN4d0nxgcdoP8816HoE0xYT:Mo8Yi9boQb56gcQqyI
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v4.0
Botnet
reach_3
C2
ludicrous-water.auto.playit.gg:54708
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bdf6054ecb4d5bea4c20430cb120eb99
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections