General
-
Target
57d80d9a174c2fd9b70b371d084b525eb3692d165896895f08bdf2afad1335b1.exe
-
Size
32KB
-
MD5
0367cedc135c5ef5f03c9568562f000e
-
SHA1
fd9787a86ee67b37999a077148d2591964d6d3f0
-
SHA256
57d80d9a174c2fd9b70b371d084b525eb3692d165896895f08bdf2afad1335b1
-
SHA512
70f77b4edd75280c5a6acf6221c20a73ae8bbaabfe427f413c32ccffc4efe854488c3b2fc7dd9080d358b946c2bddde1a338069ab6b01d665c847402ab6025cb
-
SSDEEP
384:a0bUe5XB4e0XnOZQ13BhhE9WTPtTUFQqzFC0ObbN:DT9BuOE3BhrHbN
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
njtrial.duckdns.org:5552
Mutex
44198e0ea4474c9
Attributes
-
reg_key
44198e0ea4474c9
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
57d80d9a174c2fd9b70b371d084b525eb3692d165896895f08bdf2afad1335b1.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections