General
-
Target
e766b9c57e4d91d15527f14e59b496f0_NeikiAnalytics.exe
-
Size
251KB
-
MD5
e766b9c57e4d91d15527f14e59b496f0
-
SHA1
0bbc64d3d9a35ae99cdc5af55959b6545ac4db34
-
SHA256
f4b13fe8c68028c5f411988acfc785f7f4f8711d99ec6aa6e90acf9e65a6a0ce
-
SHA512
4261960d9f8c3717befb0d09e480413fbcdb3acd8905a873114b44ca541eaa771e589f243939aa963dfb53b7afa5804d75d01e84a2baa8892cc1fc1c1f8bd727
-
SSDEEP
3072:gU0c0i5+RAEhS6bKDGABC8CwqgJ0zZiACGLXCEkNCCBwok8b9s:J+A6S6BABC8CY01iACWz6nB
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
AWS VICTIME
C2
tokenedite.ddns.net:7080
Mutex
1c01e8d9f0f5f293afde96317a14f0af
Attributes
-
reg_key
1c01e8d9f0f5f293afde96317a14f0af
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
e766b9c57e4d91d15527f14e59b496f0_NeikiAnalytics.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections