General
-
Target
a9032ce9dca75c217cf267024b0bd280N.exe
-
Size
23KB
-
MD5
a9032ce9dca75c217cf267024b0bd280
-
SHA1
76bf955459c507b3187c9651b8a29a9febeade7f
-
SHA256
2478a1b28dd65d6faadb0262cdfe8bb7511c8886d7b271a1349a346e5f57dbd5
-
SHA512
b4831215acf1ef50babf213d38e99b75e1b3f023606102a478da1b9968e86dd3d80afb6a4eff8495618ca0b82cad7a4048996e783f7656d3506666a72f0c166c
-
SSDEEP
384:IfMKFYuEEhERvoBG16Xuy0MHNw6Tg1Y+75JTFmRvR6JZlbw8hqIusZzZ/H:I0W4V6+yDRpcnuo
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Hacking
C2
0.tcp.sa.ngrok.io:15573
Mutex
8d106251c512adb9d9699016143ab02c
Attributes
-
reg_key
8d106251c512adb9d9699016143ab02c
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a9032ce9dca75c217cf267024b0bd280N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections