General
-
Target
dde4d6d97bc69395cf9e009b89001018
-
Size
27KB
-
MD5
dde4d6d97bc69395cf9e009b89001018
-
SHA1
f1e832a57ac2fe42267f2b7cf50e775ae6b3b7b5
-
SHA256
97588b1c55df470b7a661edbc0263e0b55e337df19515d27e216494789d8e34d
-
SHA512
7b611326fc4117cdf3488b3e2ff858284d31394de8515b7261d2cc23d61cb5c5298b4ad248792f3f188b5fadf336ad402c3386387b687d9c0a1c6eb17747a408
-
SSDEEP
384:EMQ+SAN7uprgvM5OSUswZXg69gbm4hfpFmRvR6JZlbw8hqIusZzZwxF:KOaxVULRpcnuz
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Conquer
C2
smsm1.publicvm.com:7777
Mutex
4bb81d57aff1b6faa4c4322f15720a27
Attributes
-
reg_key
4bb81d57aff1b6faa4c4322f15720a27
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
dde4d6d97bc69395cf9e009b89001018
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections