General
-
Target
46205736c563d3f6bd658c9449c9b17665a718dc3f546f6fa3010262ba44f68f.exe
-
Size
32KB
-
MD5
5686b0f35caac2300d78b177100c5d33
-
SHA1
6a58b5b1d5709ef88e26f9224fc2fac684496cd4
-
SHA256
46205736c563d3f6bd658c9449c9b17665a718dc3f546f6fa3010262ba44f68f
-
SHA512
c2fc029215e5de38406fb2cc69783d9647e2cb09dd3b7e999670dcdb426b230f7ac3dc1278209279b205e90cc7e26bd814cdb5754c0dbae8dfe709924bd3cc4b
-
SSDEEP
384:o0bUe5XB4e0XvOhaixBr/QmWT1tTUFQqzFuObb1:dT9BumMifrYtwb1
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
firmes777.duckdns.org:5557
Mutex
513dee9cd9814b06b
Attributes
-
reg_key
513dee9cd9814b06b
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
46205736c563d3f6bd658c9449c9b17665a718dc3f546f6fa3010262ba44f68f.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections