Overview

overview

10

Static

static

10

d4a23e5bbc...89.exe

windows7-x64

8

d4a23e5bbc...89.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d4a23e5bbc9fbc41439989ad570bd189

  • Size

    93KB

  • MD5

    d4a23e5bbc9fbc41439989ad570bd189

  • SHA1

    2e7af6e6cd78fa9620d379782314891d3df4cbec

  • SHA256

    bd1de7825d4d3bb3756b2164add074f106cc21bb204f7fa7f797ed93c14d8f6f

  • SHA512

    9ff6b805bc8cf143598ace47078e0b80be14ea73b7bc2f0438eb53a551d3b4bd638b673bf1a7add3bf43d283943d7eb6e15ca9d7473487879dcfa6118a022d22

  • SSDEEP

    768:3Y3MUnD9O/pBcxYsbae6GIXb9pDX2t98PL0OXLeuXxrjEtCdnl2pi1Rz4Rk39sGm:ZUxOx6baIa9RZj00ljEwzGi1dDtDIgS

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

127.0.0.1:5552
Mutex

408f4b4f7e5e3485fb298836a0faa279

Attributes
  • reg_key

    408f4b4f7e5e3485fb298836a0faa279

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d4a23e5bbc9fbc41439989ad570bd189
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections