njrat | ddaec11a2350ce1f51af26dc567ee2b35b21cf6e1b8604f45c03e1d6b61742b4

General

Target

ddaec11a2350ce1f51af26dc567ee2b35b21cf6e1b8604f45c03e1d6b61742b4
Size

31KB
MD5

df510ee94e0d9703c25bc7447e2502f9
SHA1

b1ccaa4e4a4aa129833fd434757dd378df973055
SHA256

ddaec11a2350ce1f51af26dc567ee2b35b21cf6e1b8604f45c03e1d6b61742b4
SHA512

d2909aa73c4a05fb1e2d6d8b3c585338dfa4b87b45d8da6058cce69ae803369ac7df7fc94c193e6ddf03e2588d8951ac9c66ebe23d5fb2cbcdbff791dcf29178
SSDEEP

768:VfP6mdWVD+7qQf4xbnsFM0WMzK6hc9RqLHjCqXw5SPxH:VamE+7qQg1sF9zKbLQHjXA8

Score

10^/10

njrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b6628209e55ed22f5dfa0554485ec30401d0d8f3c51de2f4cf214b221acc9fbd.exe

ddaec11a2350ce1f51af26dc567ee2b35b21cf6e1b8604f45c03e1d6b61742b4
.zip

Password: infected
b6628209e55ed22f5dfa0554485ec30401d0d8f3c51de2f4cf214b221acc9fbd.exe
.exe windows:0 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.voik
Size: 64KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE