General
-
Target
bf373574d290ce64aea2f8fd6e7075b0106b33206457f33d618d53e8ae481643.exe
-
Size
32KB
-
MD5
586aef0f1cdbfe27b87a3950f6455013
-
SHA1
e720397ab8c44d50a7fb9597442896acf4668c55
-
SHA256
bf373574d290ce64aea2f8fd6e7075b0106b33206457f33d618d53e8ae481643
-
SHA512
df0a2e39d935154191a2b28e9dff2317297aed2ac2bc1641c7fed15298a9ce51134f8c5b7fd9217060518ef3766f5fb83c6de8bcbb369527f4227342adcc9ed6
-
SSDEEP
384:k0bUe5XB4e0XOOVcVSjgkMeWTQtTUFQqz9uqObbg:hT9BuN6VSjeetJbg
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
nuevos2024.duckdns.org:2054
Mutex
797837af7f
Attributes
-
reg_key
797837af7f
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bf373574d290ce64aea2f8fd6e7075b0106b33206457f33d618d53e8ae481643.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections