General
-
Target
931E03D296E920701E86FA698A223CBC.exe
-
Size
32KB
-
MD5
931e03d296e920701e86fa698a223cbc
-
SHA1
7f8876cc0ff72da9edf3faf20493ee865b300ddc
-
SHA256
b944c2d2b450ec2a2ffce9b121e98dd3123da5209db9a16e2822a9bc0f6dd8bf
-
SHA512
834ff46277a68b2a55a7536580675e3617bc62b65ea9cf9ace7b7113134937191f3624cdddd7084a580dd929f46bef7e36503cc6e60b95b59a15359229b41091
-
SSDEEP
384:J0bUe5XB4e0X2O3fw0Q0mS03AWTxtTUFQqzFBObbJ:yT9Bulo55dbbJ
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
4.203.104.98:1024
Mutex
41286cbf1b41407
Attributes
-
reg_key
41286cbf1b41407
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
931E03D296E920701E86FA698A223CBC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections