Overview

overview

10

Static

static

10

7e8b4e6f00...0N.exe

windows7-x64

8

7e8b4e6f00...0N.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    7e8b4e6f00f9a0f0417eb17171508140N.exe

  • Size

    37KB

  • MD5

    7e8b4e6f00f9a0f0417eb17171508140

  • SHA1

    f4725db6c2788d550436ba7bc5d0f5ea7064a962

  • SHA256

    5ad4153dec1f3161138480aa52fc6ee215beebbfa15774a7223a2e649f5619ed

  • SHA512

    cde3c31d5612c86a3cf431a1f2ed6e9e7e54d4a3b816b2220cc4bbd185819bd2b5b1fc13638e17a59a75e699e083d95b8720920ccf4f3b76ee94785dd8f5b95a

  • SSDEEP

    384:HR+XCiMGB63fbw6ZfrZUy8fiCH1OgmBeRcrAF+rMRTyN/0L+EcoinblneHQM3ep3:4H0DwODZX8fiCEdeWrM+rMRa8Nunvt

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

zpmax.ddns.net:7777

Mutex

430d6a4a3a1f3971d8ee495d47da968c

Attributes
  • reg_key

    430d6a4a3a1f3971d8ee495d47da968c

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7e8b4e6f00f9a0f0417eb17171508140N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections