Overview

overview

10

Static

static

10

1803b1cbe5...93.exe

windows7-x64

10

1803b1cbe5...93.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1803b1cbe56a3cfc509bbb46378154d64fca3d2589b3d2643d3576f23566a693.exe

  • Size

    151KB

  • MD5

    399f052f7f86b7b295aab10c692cd8ba

  • SHA1

    f1d253009b34b518965aa39cc7372273d7deeb38

  • SHA256

    1803b1cbe56a3cfc509bbb46378154d64fca3d2589b3d2643d3576f23566a693

  • SHA512

    7b20f52b8bebbb295574208f40da925a88233b7b99e746057c4887ebaf57488570257f65d84c46839b9f8bb6a7cb06de3783ed32880a1e30e2d15f8d20cb8405

  • SSDEEP

    3072:9S680kHHHHYCaqeMqShg2rH5os/OOaUifoR1Gjg2m+UfuEv:x3q8275qOaUiaDfNv

Score
10/10
خرفاااااااااااااان تووووووورنتnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

خرفاااااااااااااان تووووووورنت

C2

hackerbahaa.myftp.biz:5552

Mutex

569321b77b4a6c8be9cc3729c022f09f

Attributes
  • reg_key

    569321b77b4a6c8be9cc3729c022f09f

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1803b1cbe56a3cfc509bbb46378154d64fca3d2589b3d2643d3576f23566a693.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections