General
-
Target
29fdf08b1ea7405f7a6771b74f75cd30e6247e5ffb9095abb4208c4572b4f81f.exe
-
Size
32KB
-
MD5
7c56a11493f60539d27f4dc5e6f887e3
-
SHA1
bf4c0c555f3a7e3cde73d30d3d00aae4b7519732
-
SHA256
29fdf08b1ea7405f7a6771b74f75cd30e6247e5ffb9095abb4208c4572b4f81f
-
SHA512
8fcf75040effe56f8b864e9f36b3593e88a539fc92c906ca7517cdd1133c0be0a2a344376913fc031a9d72683a6bb5bb8074d80f859347bcb7ae6f7cbf627115
-
SSDEEP
384:p0bUe5XB4e0XmOlCNfSLujLFWTitTUFQqz9fObb4:ST9Bu1MZSLuntZb4
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
sendfiletiahforem.duckdns.org:1998
Mutex
1d3f999c897
Attributes
-
reg_key
1d3f999c897
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
29fdf08b1ea7405f7a6771b74f75cd30e6247e5ffb9095abb4208c4572b4f81f.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections