General
-
Target
77b5287cbfd6f11ac119703ddf30ec80N
-
Size
93KB
-
MD5
77b5287cbfd6f11ac119703ddf30ec80
-
SHA1
6f3b8de5465bfc070e470cdf2703ec72ac507ab7
-
SHA256
1d02a44311236f415816b8714fecd2007403b67fab33818e5828d67781fa899b
-
SHA512
eaf9382a9e4ac601d1379d018234347c8e5e8f6d5ae6a5ee096b5c56f06f668c3ab3dae6f8cc690b8400b96e0063b335bd9b5b774b4044fb12252ed6b7e495bf
-
SSDEEP
1536:R6MFR8lZc+/2HkzvHgRrfTqjEwzGi1dDDvEgS:R6MFKc+/2HkzfKjni1dv9
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Victim
C2
hakim32.ddns.net:2000
5.tcp.eu.ngrok.io:14885
Mutex
0e9a9cb2ca2e8dafac2b3e6c5d7e4a8e
Attributes
-
reg_key
0e9a9cb2ca2e8dafac2b3e6c5d7e4a8e
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
77b5287cbfd6f11ac119703ddf30ec80N
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections