Overview

overview

10

Static

static

10

RepoHacker.exe

windows10-1703-x64

10

RepoHacker.exe

windows7-x64

10

RepoHacker.exe

windows10-2004-x64

8

RepoHacker.exe

windows11-21h2-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    RepoHacker.exe

  • Size

    36KB

  • MD5

    d6319b86f5d58cc308d9e46bd6db9044

  • SHA1

    0265d25dd98d9657cbb1e62a109e116972561998

  • SHA256

    35ab9deff0dc563f452903564b69621935efb7c584960fade875718bfe9f7159

  • SHA512

    66b10657a668c3e82bfd6f2e11a357305cc9fc211ca39b88bb206a8a8619b5f6b0007d3480ef9250600bc9e3c6ef9eb01ef9bbe919b4fa4c839b0357502ef9de

  • SSDEEP

    384:RtVMiLJBndznNCyMGmN4y3VncG6DSprAF+rMRTyN/0L+EcoinblneHQM3epzXvzr:P/RNRMGmNJJd6ErM+rMRa8NuF5t

Score
10/10
repoh2ckernjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

RepoH2cker

C2

147.185.221.21:3238

Mutex

b9ac204121aeb89afba5c1de324757b0

Attributes
  • reg_key

    b9ac204121aeb89afba5c1de324757b0

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • RepoHacker.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections