General
-
Target
48CD54BF0C884470B13F2F93E96BCA90.exe
-
Size
23KB
-
MD5
48cd54bf0c884470b13f2f93e96bca90
-
SHA1
abcb0600c8ffeafd5b96e3ef5034ce3024b96676
-
SHA256
20e60612fdd5009c5e3357ab5ff5b48852d26ee470b8ddd2099ea25b21af5964
-
SHA512
a48998094529f58ab6ef21d0c3b26b2f6b949165249d0db7e7d855200c2f2b98423b8a4dedd31e11e98694e45d94846d735a7ac47de4a4935296cab17fe268c1
-
SSDEEP
384:uYmdk8XvCJrQLdRGSiEYo7Y65gPyx6BDXNRmRvR6JZlbw8hqIusZzZyBG:xwWkti8aeRpcnus
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
angela-kindly.with.playit.plus:1406
Mutex
ee609e59f5a0696643509514713fa3e3
Attributes
-
reg_key
ee609e59f5a0696643509514713fa3e3
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
48CD54BF0C884470B13F2F93E96BCA90.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections