Overview

overview

10

Static

static

10

13b4c6464f...cs.exe

windows7-x64

10

13b4c6464f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    13b4c6464f69309f4fe160489137d460_NeikiAnalytics.exe

  • Size

    23KB

  • MD5

    13b4c6464f69309f4fe160489137d460

  • SHA1

    bfb12d2393c8e3ee36d922e7ff352a6e137217e2

  • SHA256

    a5d58660e3c6835d53d914d4ef2d6c8f3d605020335bdf75dade04f7b86989e3

  • SHA512

    13d879b289c6727e1c5cbcf7396bc51b496488f0cc39aa69e0df5d2f362eeeacc3a1f15a17c5a8b13a851ed51890a8063a4c9348c4be8cd8b409c952fbcdc3b2

  • SSDEEP

    384:1YYmdk8XvCJrQLdRGSiEYF7Y65gPyx6BDXNRmRvR6JZlbw8hqIusZzZYM:5wWkti/aeRpcnui

Score
10/10
***** si *****njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

***** Si *****

C2

8903dnas.duckdns.org:9002

Mutex

e2f29bae11472b4175d8eca9dc9f73f5

Attributes
  • reg_key

    e2f29bae11472b4175d8eca9dc9f73f5

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 13b4c6464f69309f4fe160489137d460_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections