General
-
Target
075db78b04dba73e4cdc303d0aa71e40N.exe
-
Size
23KB
-
MD5
075db78b04dba73e4cdc303d0aa71e40
-
SHA1
11d6334c7f3ff23f47ea72d658df1fbe656bc36e
-
SHA256
1680d8e58aee610282c0bc98617c5408dee330429aa4e3a9b68fda87bdc2db8a
-
SHA512
a6487753e51bff93439441b98123ac1c76ae0b131d70305483fc29546a01824a9851b1c21eec63cf39d641bd28ecd8bfe8bc2ef21e03acbd0d4190695bf952d0
-
SSDEEP
384:ssqSefmxpDQcx2cSusSUtL+06jgFACcyMZZjvRmRvR6JZlbw8hqIusZzZlG:zVhL1sSFPyqgRpcnun
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
nvh
C2
127.0.0.1:9999
Mutex
fc4d212ef5e1910e333e973238fb1a9c
Attributes
-
reg_key
fc4d212ef5e1910e333e973238fb1a9c
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
075db78b04dba73e4cdc303d0aa71e40N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections