Overview

overview

10

Static

static

10

8b7ca0b84c...0N.exe

windows7-x64

10

8b7ca0b84c...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b7ca0b84cf96f1c351a2e43901db8a0N.exe

  • Size

    23KB

  • MD5

    8b7ca0b84cf96f1c351a2e43901db8a0

  • SHA1

    a2c31d7469309ccacd03d247045d66ec9aebfe6f

  • SHA256

    608f0bc6a3999b9c70f8e8eefd9058f7a503d61d598023a6662d71f2bc72e099

  • SHA512

    dff336eaa1cd287337efc34eaef98ed120dafbd17e7c602d8a6d10c3a982a37e536ff131d9076a51cc93a31682ff609785d8ccab14b169c1bd65e008379a4e7f

  • SSDEEP

    384:sMKFYuEEhERvoBG16Xuy0MHNw6Tg1Y+75JTFmRvR6JZlbw8hqIusZzZNMc:zW4V6+yDRpcnuw

Score
10/10
lixxinnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Lixxin

C2

splashnet.ddns.net:1177

Mutex

24f44d43fb1c3ffd9cf0c259e0a2badc

Attributes
  • reg_key

    24f44d43fb1c3ffd9cf0c259e0a2badc

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8b7ca0b84cf96f1c351a2e43901db8a0N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections