General
-
Target
08781af3973e8b631cd726c3b69224cdee334e9b0de67fdcaf754c5c8673a0d8
-
Size
37KB
-
MD5
94774993d5a1b10a274fd7fd6b705b91
-
SHA1
5b34924da254308c1dfb65e2917a5243a97b4fb1
-
SHA256
08781af3973e8b631cd726c3b69224cdee334e9b0de67fdcaf754c5c8673a0d8
-
SHA512
9c161763b07ca69c2fc6b94daea631f0e8dfadcd17ee3d47ec80ad327fdf4e4ef86b7465b70d885ecae375694fd34ee5cf1d50f3b2e495bec1821aa01f66d49d
-
SSDEEP
384:Zate5aNitbFbOn0aH2ykrkmPbZ4znCSqrAF+rMRTyN/0L+EcoinblneHQM3epzXs:Qt7MNWtkrkmzuDCFrM+rMRa8Nu0Pt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
127.0.0.1:53839
Mutex
740cd978a472068d5a59d623b2021a99
Attributes
-
reg_key
740cd978a472068d5a59d623b2021a99
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
08781af3973e8b631cd726c3b69224cdee334e9b0de67fdcaf754c5c8673a0d8
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections