General

  • Target

    240416-nqkmvahd22

  • Size

    37KB

  • MD5

    ba59a8753756dce717b79493ea95a388

  • SHA1

    8308b7c1dc0496894d87cfd7af95470b2759ae26

  • SHA256

    9643dc67a7e22c883606ced1ebcd6564af69fa739fbf4c4c0acaa6e0c0978383

  • SHA512

    22a045e0fbfc84cb9a6bc76cf2cf7b62ad284e12d7972f10a1723e006da6a6c1fa19ed504494784f3520ec97bbac16ce299567c91da5fa321aab48247a6840f4

  • SSDEEP

    384:07j3hUidk8XR21cGMy8PYk5f30Fl6sZcrAF+rMRTyN/0L+EcoinblneHQM3epzXT:cj3LLGv8PYk58qs6rM+rMRa8Nue8t

Score
10/10

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

report-dust.gl.at.ply.gg:28329

Mutex

68920385a1dddf20a546ac9846448280

Attributes
  • reg_key

    68920385a1dddf20a546ac9846448280

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 240416-nqkmvahd22
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections