General
-
Target
test.exe
-
Size
93KB
-
MD5
38a458c4362d62f17975b883741fb90c
-
SHA1
cb1f23429ea4171826e03347fb047ea5e01d44c3
-
SHA256
c3d3cd615197102fa77b2fb1d17c430a093ca6fe73e05977bb4988630cc651f3
-
SHA512
54eb38fb38c3ffd1ca67a5b4ab3de3b68e5b6ca65e51abb7304bbba1a53821b9bdec732355d5ddd03f05dad765006a480dcf047586bbcd704de06d52932ebda0
-
SSDEEP
1536:5xPdrvzeKQVfi5X3K1QjEwzGi1dDQDagS:5xlzeKQVu3K1Bi1dGf
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
physical-several.at.ply.gg:51206
Mutex
22b4eec3eb1a414a3941ce7ababf5a49
Attributes
-
reg_key
22b4eec3eb1a414a3941ce7ababf5a49
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
test.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections