General
-
Target
Lithium Nuker V2.exe
-
Size
176KB
-
MD5
698c1c10e4d79b1af12d21068f5ee29c
-
SHA1
5977b8ea49ab862ceb24266f4791429248ca685e
-
SHA256
088b7666d2934b14e0422734a3e515415221aa6928dc286446ce80bc8d8f8b4b
-
SHA512
c701fb2e68cec9c6d2367ead8a63837d428981a5cc7173978db5291e0a5b33a9064a1a977af7a5e1533640f844585ed2ac323943ff5a011cf7213a209d0e63fd
-
SSDEEP
3072:MCUsDn4oKIH+DiwsNMDAXExI3pmCL6wCLbujdQjAHzBdqCOX7hsvOdHbzbXPFIZm:MCUs0UdvMwZCLyjd3BGtsvOdHbzTtIZm
Score
10/10
Malware Config
Extracted
Family
njrat
Version
<- NjRAT 0.7d Horror Edition ->
Botnet
xDD
C2
away-displays.gl.at.ply.gg:26916
Mutex
61f96615bddfa1fd7f526927870cc87a
Attributes
-
reg_key
61f96615bddfa1fd7f526927870cc87a
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Lithium Nuker V2.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections