General
-
Target
a9dd6da84775261c48db7a25f937586a5c7d79e802d8e5bf22466e936b3643ac.exe
-
Size
43KB
-
MD5
1b2cb60adec7219b41195bb486015ff5
-
SHA1
a065802a894f50fcae3bf5536021639c01075dc3
-
SHA256
a9dd6da84775261c48db7a25f937586a5c7d79e802d8e5bf22466e936b3643ac
-
SHA512
f7976ec31f774d65826494941e7946d10f0687d86b60ef2a9009c0e5183ee0d1aebe65d67e110e13acf74b6a54778cee0493cff39090066975ebf8e4675cf0a4
-
SSDEEP
384:48ZymQt3VarE8yTH/fq5WKOEnsDay0+TzEIij+ZsNO3PlpJKkkjh/TzF7pWnL0/l:46Z63MY5Tffq5hGDFuXQ/oI03+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
HacKed
C2
0.tcp.eu.ngrok.io:12984
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a9dd6da84775261c48db7a25f937586a5c7d79e802d8e5bf22466e936b3643ac.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections