General
-
Target
bce165d33e357b11e80d957e6bfb4e03eda91beec78dac5bd13a6ef8af108c0e.exe
-
Size
93KB
-
MD5
320003e6e4ffaf6abfec240b66d847dd
-
SHA1
65216843b5ca5515999aafc6696f2b9bf3e7b2ae
-
SHA256
bce165d33e357b11e80d957e6bfb4e03eda91beec78dac5bd13a6ef8af108c0e
-
SHA512
349fdb5a1d00b2821769e592a6f186ae752ae317ade315462004ab8c95995dc0c27c044f1926a03c849cebefff7bcebef6046a1f604b24f53b1a11f5f335bb37
-
SSDEEP
768:VY3h+xFKghFchQVTqWnwz/1h3XE/blTzxXSsvXxrjEtCdnl2pi1Rz4Rk3TsGdpy3:S+nK6bTq8itNEhVhjEwzGi1dDfDygS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Server
C2
hakim32.ddns.net:2000
0.tcp.jp.ngrok.io:12215
Mutex
66273c90ad6767c59de1f960bb1ab11c
Attributes
-
reg_key
66273c90ad6767c59de1f960bb1ab11c
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bce165d33e357b11e80d957e6bfb4e03eda91beec78dac5bd13a6ef8af108c0e.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections