General
-
Target
0ba9049b0e1f41c42e6314c9c7d8f210d8f47ad19aa35615937375e891ac2b7bN
-
Size
36KB
-
MD5
98def32e79167acaee15393662cd3300
-
SHA1
f432047876d651ab4dae941f3dc2eac46e50bcd7
-
SHA256
0ba9049b0e1f41c42e6314c9c7d8f210d8f47ad19aa35615937375e891ac2b7b
-
SHA512
8ca7a1c1727f91a110832448c862271abecd57a5ef60b54fbfa2afbf31307932d36c0f242d1d1e4ca988008b61bb20d217aa94d5939cb1f078d98147594dec9d
-
SSDEEP
384:d+bsiDlT95hL5YyUvjh/xOi4aaF3ArAF+rMRTyN/0L+EcoinblneHQM3epzXFNrG:g5v5zUvjhDlaRArM+rMRa8Nu/Yt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
binacian2018811.servehttp.com:5552
Mutex
6249c924746f5a38f2dc642106909bd7
Attributes
-
reg_key
6249c924746f5a38f2dc642106909bd7
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0ba9049b0e1f41c42e6314c9c7d8f210d8f47ad19aa35615937375e891ac2b7bN
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections