Overview

overview

10

Static

static

10

fbd9ee6b71...20.exe

windows7-x64

10

fbd9ee6b71...20.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fbd9ee6b71d3096fc45b9038afd96d2779de4fc378ff207ab064b83c05c75a20

  • Size

    54KB

  • MD5

    0334f657a0715d7f119f81aa68c62a5c

  • SHA1

    d1ba0c2bede8aca10a4a9208fe5154fae113e246

  • SHA256

    fbd9ee6b71d3096fc45b9038afd96d2779de4fc378ff207ab064b83c05c75a20

  • SHA512

    661267345f1d110d0342672964498a3a2b45730b2667b670a2b78d2952159657ea0fa3bf85970c3c0465bd5c9aed96c726b122a08ce7178c05b4b51a83433d90

  • SSDEEP

    768:h1WzT5BlHyXCSTxtPoFoqJHA590TRXZ66QDY/X9u0hcbOmlhzyU:HyT5BlHyXCS0FoqJHTKY/Xg8cbOmTzy

Score
10/10
axnjrat

Malware Config

Extracted

Family

njrat

Botnet

Ax

Mutex

53$21321231sadwawdwaqw213ad79$21321231sadwawdwaqw213ad73$21321231sadwawdwaqw213ad74$21321231sadwawdwaqw213ad65$21321231sadwawdwaqw213ad6d$21321231sadwawdwaqw213ad33$21321231sadwawdwaqw213ad32

Attributes
  • reg_key

    53$21321231sadwawdwaqw213ad79$21321231sadwawdwaqw213ad73$21321231sadwawdwaqw213ad74$21321231sadwawdwaqw213ad65$21321231sadwawdwaqw213ad6d$21321231sadwawdwaqw213ad33$21321231sadwawdwaqw213ad32

  • splitter

    |-F-|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fbd9ee6b71d3096fc45b9038afd96d2779de4fc378ff207ab064b83c05c75a20
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections