General
-
Target
2373e7621168d542a712b029ce252140N.exe
-
Size
93KB
-
MD5
2373e7621168d542a712b029ce252140
-
SHA1
a59158a2839d71e22ed16c195c34d8a1fd90754d
-
SHA256
a56ee2efb1a85ab0738847ae7bcd8a9a673c0027377265f65005846dfc30d27b
-
SHA512
f7864bc5e130087ed750925d19f5d7543f7a28213751492c04015b20eb6a85e8f8c7d3c99b70f7f0c6a598e0335ba5d0c9095b55f3a6cfa273d05988d55deba1
-
SSDEEP
768:ZY3TCRhWXxyFcxovUKUJuROprXtgN8eYhYbmXxrjEtCdnl2pi1Rz4Rk3EsGdplgM:MC/WhIUKcuOJXPhBjEwzGi1dDcDlgS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
77.37.151.21:1604
Mutex
b080c76fea49ae79235dc9ce0a7de1f4
Attributes
-
reg_key
b080c76fea49ae79235dc9ce0a7de1f4
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2373e7621168d542a712b029ce252140N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections