Overview

overview

10

Static

static

10

f489cba00e...af.exe

windows7-x64

10

f489cba00e...af.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f489cba00e6d7bc606ea137f639ac40baca8871474066bec0a839fae75de4eaf.exe

  • Size

    23KB

  • MD5

    9c691e60b7ffdaec80cb169114b784f2

  • SHA1

    1d7df5d95f0e4ff3c5825c4aed7d3838d0c02f1e

  • SHA256

    f489cba00e6d7bc606ea137f639ac40baca8871474066bec0a839fae75de4eaf

  • SHA512

    84b9f8c7de1107f95c3833d0e556bbdffeafc33da9346ccc66d080e05b16946e048f271d6a84649792d1847ffb805b0ab24402d25d4eca2a77e2f9e80bc67264

  • SSDEEP

    384:dcqbCK0l4h7o9SVyDGvENuh46/gJkOmMSW38mRvR6JZlbw8hqIusZzZiC:O30py6vhxaRpcnuy

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

191.239.255.3:5552

Mutex

864692358947bbd64230700870762f06

Attributes
  • reg_key

    864692358947bbd64230700870762f06

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f489cba00e6d7bc606ea137f639ac40baca8871474066bec0a839fae75de4eaf.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections