General
-
Target
bUHF.exe
-
Size
32KB
-
MD5
b47307545c821c03b617776a41df1741
-
SHA1
086f735fcd95e8d3608e22494ae3cadd4d9d7acb
-
SHA256
0f2be1e974ae7ee9be5354fbef333e105cce5c25473648e66a67269d560220f4
-
SHA512
3393fd1e427430e5ac3a8d40bef45bd26d0490d9184d4cbddb595efa1c6fc5ede427962d93c18710d554472c93d6e4dc42bb4c7bb6e987c305b9c43c3a0d2209
-
SSDEEP
384:z0bUe5XB4e0XvOxZggUBZIGlWT1tTUFQqzFBObbB:gT9BumzggUBZI5XbB
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
rusia.duckdns.org:1994
Mutex
aed0817703934
Attributes
-
reg_key
aed0817703934
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bUHF.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections