General
-
Target
83260a601cbf93b2f20fedc4a5628260N.exe
-
Size
55KB
-
MD5
83260a601cbf93b2f20fedc4a5628260
-
SHA1
20ba5b79563ace74ef53bcd1739a80c1160d842c
-
SHA256
5a2e87f3516118517754f886ab185ea88c9d5f68d3caf0a9a95eec0a6757098b
-
SHA512
9c23de7a24aa707649d92c694b2cd03f789c745dd4476d8d669c52b87bf6201b79abbab17cd10e99a04812d03704b42a86811fc04d6449fa285b9a956bac124f
-
SSDEEP
1536:wTh5MDn5NRgyRhOzDawsNMDMXExI3pm8m:mMDnBxfOzDawsNMDMXExI3pm
Score
10/10
Malware Config
Extracted
Family
njrat
Version
<- NjRAT 0.7d Horror Edition ->
Botnet
Victim
C2
147.185.221.21:15158
Mutex
744c29ccf189a1a2a9314abe04d23c1f
Attributes
-
reg_key
744c29ccf189a1a2a9314abe04d23c1f
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
83260a601cbf93b2f20fedc4a5628260N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections