Overview

overview

10

Static

static

10

48cfc20316...0N.exe

windows7-x64

48cfc20316...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    48cfc20316f058bb1e41b46e016067c0N.exe

  • Size

    26KB

  • MD5

    48cfc20316f058bb1e41b46e016067c0

  • SHA1

    0f5494773fa6b4fc08a0ec25e399fbfeab36e354

  • SHA256

    d6f10dab8c825237cc02564c27f21d33eec36e811d6e71c7bd4252dbd4f5d3fb

  • SHA512

    5938bf1e3ae9288aebaf55b1c27c134cf1d6c30a8cd8556c53dfc0fde0f3694e05883263a5f6a9c21f72d89f34c0133bdf8af9f4eae0c8c994f9b40925e6240b

  • SSDEEP

    384:sL+vALsnneIsrzqxsHVrikPgth5MLAQk93vmhm7UMKmIEecKdbXTzm9bVhcaU6/1:q/aeY6DLA/vMHTi9bD

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

v4.0

Botnet

HacKed

C2

127.0.0.1:2222

Mutex

Windows

Attributes
  • reg_key

    Windows

  • splitter

    |-F-|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 48cfc20316f058bb1e41b46e016067c0N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections