General
-
Target
f1d1ced19fece059f35bd938a035bea0_NEIKI
-
Size
93KB
-
MD5
f1d1ced19fece059f35bd938a035bea0
-
SHA1
11b652510bcc9b1570d76e66767d99aab992893c
-
SHA256
38eafb95f8f90bb32139ddbf59e5f672dd2183a1c3a30cdfe93d09455e795698
-
SHA512
cf383a3407af46fb41248a501e0a6be445175bc749eae3e263b5df1d71cdca67a2c06fab0f68dfd81a22776d243d9f2670610e86d3fe2294b88e31d551046825
-
SSDEEP
1536:LYdrg4RMdHOK1QjxHFdjEwzGi1dDW/DJgS:LYd6HOK1QjRFqi1d6G
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
0.tcp.eu.ngrok.io:11168
Mutex
6d63ad3cd851a451cd75b5fdcccdf07b
Attributes
-
reg_key
6d63ad3cd851a451cd75b5fdcccdf07b
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f1d1ced19fece059f35bd938a035bea0_NEIKI
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections