General
-
Target
7168af3a2778fc58cf0e61bccce7e8e0_NeikiAnalytics.exe
-
Size
23KB
-
MD5
7168af3a2778fc58cf0e61bccce7e8e0
-
SHA1
381e50e907c2142fc7c2e2c0074c5895634e91c9
-
SHA256
c9500fb1f556688b7eee002c8c30e8497c8b2cd6866f62c2356e2c612998e78b
-
SHA512
b90304b6cd5f92907007353c35585a58907267bb89cb4d109b0aeaf20ced898356bb862097adf807ec0628e25b1c55201c74fea701fad1ce3a0f7e724d65ac34
-
SSDEEP
384:wYM8aSyS9gB3Y1KIay2X8cLZI6XgxsGJVPpmRvR6JZlbw8hqIusZzZ9u:wi589tXvRpcnuX
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
WinRAR.V1
C2
xxtacholuver.ddns.net:1604
Mutex
96aa58be09311e7552e3679c2bb97e10
Attributes
-
reg_key
96aa58be09311e7552e3679c2bb97e10
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
7168af3a2778fc58cf0e61bccce7e8e0_NeikiAnalytics.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections