General
-
Target
superpolygon.exe
-
Size
37KB
-
MD5
fa659ec039e8b5328badd34e4c193133
-
SHA1
281248a73da12039f5aad670b65a529582c878af
-
SHA256
6693a2710e891e1ac334af2d29ef3fdd8b4a65b737460934051543cf76a6ba33
-
SHA512
3d039935fec403dfeedb8a5ba53cc1b06a9c3f32924fb83b2b8538bc549b6d82c17b96efb4031ceab2d83184dd1f10f6a41cb61593bc273e97a07015ea19f323
-
SSDEEP
384:zmNTgiG1C1ZfursvO6yszIJ0nf+T3Qj4rAF+rMRTyN/0L+EcoinblneHQM3epzXS:SNB5WpszIJ0mzQUrM+rMRa8NuvIt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
sex
C2
standards-key.gl.at.ply.gg:5471
Mutex
bc57c58d6c340623fc10c6460bd791a4
Attributes
-
reg_key
bc57c58d6c340623fc10c6460bd791a4
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
superpolygon.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections