General
-
Target
89e9057fd39c059d1c722afceb528a4d7feb1018f585b13e0312954b2b8ea40f
-
Size
93KB
-
MD5
ab1f1824e4aa8a445e6b5e7da4ad5391
-
SHA1
bae78255991925eaa2211bd7865721cb58710db3
-
SHA256
89e9057fd39c059d1c722afceb528a4d7feb1018f585b13e0312954b2b8ea40f
-
SHA512
ae5d5b29b67eac3041e28d3b9ece82d1c1e089a168b9f54d98c5096ef97efced86c9e9866e8f0a44c7c4f765dcbd46bc165035212d625f31e0de740325fcf82c
-
SSDEEP
1536:dUCUWIMH/n3t7j2mHh7I/jEwzGi1dDvDFgS:dUCUin3t7j2kh7IEi1d/S
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Minecraft
C2
hakim32.ddns.net:2000
127.0.0.1:5552
Mutex
8f7deb45be0fdf9bdd9a0e2b2f86c621
Attributes
-
reg_key
8f7deb45be0fdf9bdd9a0e2b2f86c621
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
89e9057fd39c059d1c722afceb528a4d7feb1018f585b13e0312954b2b8ea40f
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections