Overview

overview

10

Static

static

10

63a426782e...e3.exe

windows7-x64

10

63a426782e...e3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63a426782ec8ec66f046fa20a0da67fd1b12529b530a4b4f42d360183d69e9e3.exe

  • Size

    33KB

  • MD5

    4353ed6964bca8a997b8b101b2c27c14

  • SHA1

    eeeb0c4cdb143621c6a37caafe42b145a4d30e2c

  • SHA256

    63a426782ec8ec66f046fa20a0da67fd1b12529b530a4b4f42d360183d69e9e3

  • SHA512

    cd8541f5a133c3f7b3e7526ee0fec8a6e4c8438997ec1827aac2bdc5a05e7244341fc87476a78673ab2d58d4e4ca30115f6d74444c32de0746f4aa4b5b00f7c0

  • SSDEEP

    384:koWtkEwn65rgjAsGipk55D16xgXakhbZD0mRvR6JZlbw8hqIusZzZekjamn4Sg3f:T7O89p2rRpcnu82mn4P3UX8cO

Score
10/10
victmnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Victm

C2

20.ip.gl.ply.gg:36100

Mutex

5f6eb6924742a5189270b46a6c57febd

Attributes
  • reg_key

    5f6eb6924742a5189270b46a6c57febd

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 63a426782ec8ec66f046fa20a0da67fd1b12529b530a4b4f42d360183d69e9e3.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections