njrat | cbbf83cf00850343f3c51206bde16a60_NeikiAnalytics

Resubmissions

14/05/2024, 15:15

240514-smyshscb8z 10

14/05/2024, 15:11

240514-skwv5scd67 10

Sharing

Copy URL Twitter E-mail

General

Target

cbbf83cf00850343f3c51206bde16a60_NeikiAnalytics
Size

29KB
MD5

cbbf83cf00850343f3c51206bde16a60
SHA1

82cccf576cbbaed371565c4f7336c73c3268c660
SHA256

4a216055989da447693f8b43a54e5891b4542af21f986b3d87fceda1c16c5410
SHA512

16d7b84058f3599fbd53a0fed65029c95a131773511f9ccecfc8c7122c4c60f8d1c63e20cd6ed67601ee362adcc51c8bd17b21e57aa31b933421294f6e9d7c15
SSDEEP

384:52nLNl73t5otQMOdePp5TdNZmGmqD8ZneQqGBsbh0w4wlAokw9OhgOL1vYRGOZzL:a7jo2MzBvb4qcneQBKh0p29SgRzn

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

Hacked

fortniteboost.ddns.net:1177

Mutex

d1d4fb33582c375ea197dd0f850b1dc0

Attributes

reg_key
d1d4fb33582c375ea197dd0f850b1dc0
splitter
|'|'|

Signatures

Njrat family
njrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbbf83cf00850343f3c51206bde16a60_NeikiAnalytics

Files

cbbf83cf00850343f3c51206bde16a60_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Extracted

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 27KB - Virtual size: 26KB

.rsrc Size: 1024B - Virtual size: 576B

.reloc Size: 512B - Virtual size: 12B

.text
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 1024B - Virtual size: 576B

.reloc
Size: 512B - Virtual size: 12B