General
-
Target
d65e2a63a3e7cd2675134d15ae271d3b4f4920cf166e9cdfff34b2cf7b07b449.exe
-
Size
32KB
-
MD5
3e07cea83322232968c52e0ad1f98c03
-
SHA1
093c6a9df30012c36c5231b105816b8a614feba3
-
SHA256
d65e2a63a3e7cd2675134d15ae271d3b4f4920cf166e9cdfff34b2cf7b07b449
-
SHA512
43da0ab1a54d86bbdef78fb3c68d1cc035601f25476b7715bd8afa65f585e9ce7e22597e6da90ac4bc07e888761d456d88ada4c59b80fca60582f9ab9fea4716
-
SSDEEP
384:h0bUe5XB4e0XfODHixBr/QuWTFtTUFQqzFKObbt:6T9Bu2zifrYd4bt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
berlyn777.con-ip.com:7777
Mutex
03f62b4542954
Attributes
-
reg_key
03f62b4542954
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d65e2a63a3e7cd2675134d15ae271d3b4f4920cf166e9cdfff34b2cf7b07b449.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections