Overview

overview

10

Static

static

10

e5b869a314...92.exe

windows7-x64

10

e5b869a314...92.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    e5b869a314a5bd09701e36d9d8eae7b3cb32db01d62131f08a80f1bf51aba292

  • Size

    23KB

  • MD5

    8fa923174162e13a19d577dea01d0e21

  • SHA1

    a421a76d386f9c95c64aa8a9e556e10b2ca4cf78

  • SHA256

    e5b869a314a5bd09701e36d9d8eae7b3cb32db01d62131f08a80f1bf51aba292

  • SHA512

    2a7ec43b63d29e9bdae70cbd29b5e7f26dcc450eb6fcc2f2162eada2ca597e8077d0ffa1398904b70fc5af17b9781407fac65e285dfb926fa0533eabfebf2487

  • SSDEEP

    384:XDvY324bcgPiJLQrfARGSRUJsbY6ZgvSMBD3t8mRvR6JZlbw8hqIusZzZZ6:XD4L2s+tRyRpcnuX

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

192.168.0.111:5552

Mutex

9c264d3d8696a23e06b769700c2d66de

Attributes
  • reg_key

    9c264d3d8696a23e06b769700c2d66de

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e5b869a314a5bd09701e36d9d8eae7b3cb32db01d62131f08a80f1bf51aba292
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections