Overview

overview

10

Static

static

10

6e7ea9a72f...9c.exe

windows7-x64

10

6e7ea9a72f...9c.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6e7ea9a72f087f30cc74d88c46b13661fddb32d7e5f2719b453d509bd1cb2f9c

  • Size

    75KB

  • MD5

    1433bbece031ccbe6685a79c78bf9dfb

  • SHA1

    8ce809797df81b6ecaa5bde6e4e4e957d55dd046

  • SHA256

    6e7ea9a72f087f30cc74d88c46b13661fddb32d7e5f2719b453d509bd1cb2f9c

  • SHA512

    81824de2a061762e3bb69c22cbe7e7d68dfd212ab15249ca771c196c11fb2b61f70d0f8b35f7142315a94f55566ae5582417f30a08899e1b0a8915ed648780cd

  • SSDEEP

    1536:OIR7IMUoN36tWQviFw1cxfFiBnvA8fLteF3nLrB9z3nh5aF9bBS9vMUdS1EAd8II:b9IMUoN36tWQviFCc1sBnPfWl9zLaF92

Score
10/10
loxnjrat

Malware Config

Extracted

Family

njrat

Version

Platinum

Botnet

LOX

C2

127.0.0.1:15240

Mutex

Chrome.exe

Attributes
  • reg_key

    Chrome.exe

  • splitter

    |Ghost|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6e7ea9a72f087f30cc74d88c46b13661fddb32d7e5f2719b453d509bd1cb2f9c
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections