Overview

overview

10

Static

static

10

lolvere.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    lolvere.exe

  • Size

    93KB

  • MD5

    f581026c035178f10e131778b3fe4bb6

  • SHA1

    add172356e63465694826fc070ff0ea201268882

  • SHA256

    af4fdfc985ab52b2897d51eea38bb3ccd7d6dfe3f5998ac50a638e6ad8ecc67c

  • SHA512

    5decfad7a2666fc7ba97d2e25c10fc46693771ee2d12384731a9f99e418affb98e769fe29ad1e37f3e9d81e3b59951beefa6d78a7fcc0bc128530465850b36de

  • SSDEEP

    768:vY3v+BD9O/pBcxYsbae6GIXb9pDX2b98PL0OXLeuXxrjEtCdnl2pi1Rz4Rk3AsGz:2+zOx6baIa9RPj00ljEwzGi1dDYDHgS

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

127.0.0.1:5552
Mutex

d2ccc6e1d1801752e617efdc3c7fb02e

Attributes
  • reg_key

    d2ccc6e1d1801752e617efdc3c7fb02e

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • lolvere.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections