General
-
Target
c0310df0f31ce1c56562d8f6c9e4398f90028ebfd49afaba760963b6510ad2af
-
Size
2.2MB
-
Sample
240920-2dwq8ssaqr
-
MD5
2245fe5aceb9a49b4a455af092baffad
-
SHA1
bfc5557d1597a1d73cc2f24ae1d492ddb47620c1
-
SHA256
c0310df0f31ce1c56562d8f6c9e4398f90028ebfd49afaba760963b6510ad2af
-
SHA512
bc39f127e066c5a350883e3f8a40ee268ac35f1ea582f8c093aecf6aa8d0060f0d4760307d96480dc62b3f4cb005df6a6ead1763ac7256290bfc8aab6b03bdcf
-
SSDEEP
1536:mXhng5WlEimwwam+fgMtQW3hKfSsLnw5HzOsr05Kcgej8e6LXFqOi6:6hnwiQQgScw5i2
Malware Config
Extracted
njrat
Njrat 0.7 Golden By Hassan Amiri
HacKed
jokaretsoooo.ddns.net:5552
Windows Update
-
reg_key
Windows Update
-
splitter
|Hassan|
Targets
-
-
Target
c0310df0f31ce1c56562d8f6c9e4398f90028ebfd49afaba760963b6510ad2af
-
Size
2.2MB
-
MD5
2245fe5aceb9a49b4a455af092baffad
-
SHA1
bfc5557d1597a1d73cc2f24ae1d492ddb47620c1
-
SHA256
c0310df0f31ce1c56562d8f6c9e4398f90028ebfd49afaba760963b6510ad2af
-
SHA512
bc39f127e066c5a350883e3f8a40ee268ac35f1ea582f8c093aecf6aa8d0060f0d4760307d96480dc62b3f4cb005df6a6ead1763ac7256290bfc8aab6b03bdcf
-
SSDEEP
1536:mXhng5WlEimwwam+fgMtQW3hKfSsLnw5HzOsr05Kcgej8e6LXFqOi6:6hnwiQQgScw5i2
Score10/10-
njRAT/Bladabindi
Widely used RAT written in .NET.
-
Adds Run key to start application
-