Overview

overview

10

Static

static

10

5841a8a95e05d58a.exe

windows10-1703-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    5841a8a95e05d58a.exe

  • Size

    93KB

  • MD5

    c28c57588077a93983f6d4cbaa30a130

  • SHA1

    61013fe2450fee9b928e016590bb92bef17359ca

  • SHA256

    dbba3358f6bf08f6f40711574c76905b471a1a08259396f6b80ee63d06fc8951

  • SHA512

    30fe3adb906ac5f08073162a92f0985b946cdb71bdfcdb28f50cdebdf37a702bff42c2af928afc148801301350b68a8bd3afe85208f89f3f10ae262aa12df474

  • SSDEEP

    768:9Y3oZU3nWXxyFcxovUKUJuROprXtWNEpeYhYbmXxrjEtCdnl2pi1Rz4Rk3OsGdpx:3UXWhIUKcuOJRpPhBjEwzGi1dDqDhgS

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

pro123.ddns.net:161
Mutex

0bd34f575986b2731a655919cd7081f4

Attributes
  • reg_key

    0bd34f575986b2731a655919cd7081f4

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5841a8a95e05d58a.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections