General
-
Target
x4.exe.bin.zip
-
Size
24KB
-
MD5
c679ed4fc3d1cd4a85498d34aaf836bc
-
SHA1
8d08c410bc26191dabc7030d335423c351131972
-
SHA256
ae89a0e3b406cd473712df9c32363a0871611d09b411120f07d0836e3c64e5b1
-
SHA512
897860ef71d09e9d96c99a9b020bee9310a5ee96a15f164022a2b3d7e7cd1fb3b3ef9a12ecd44c78d099dcfc7513ccd90be53bb64cab2819fad74b88abe6f689
-
SSDEEP
384:Mccnx1M38fvgDWlc+8ytOs4YTNF0wWPhWK0MGyws6zDX6LiQnVLhsikV2q1DegB9:QM3Gg6EyB9FooSbkynsikVJAgBSER
Score
10/10
Malware Config
Extracted
Family
njrat
Version
<- NjRAT 0.7d Horror Edition ->
Botnet
Victim
C2
limited-architect.gl.at.ply.gg:52522
Mutex
e61d751939442896523a0628facf1d34
Attributes
-
reg_key
e61d751939442896523a0628facf1d34
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
x4.exe.bin.zip
Password: infected
-
x4.exe.bin
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections