General
-
Target
7e55fd01c96f84a79956e90c1ab551cc636043c989902b32dcc0c60c97720ab0.exe
-
Size
60KB
-
MD5
9c65fe4071d07b6c7242bde887287c8c
-
SHA1
ca53bfdcb6a998ae51d1550f622f53277083d017
-
SHA256
7e55fd01c96f84a79956e90c1ab551cc636043c989902b32dcc0c60c97720ab0
-
SHA512
ba203418df40018f15829826577d00b209c91158466213e430d49e8466f4f224cf6397c09e521e9b1f4428a1fc809241452294fa35ab45de4f5ae786646fc90c
-
SSDEEP
1536:tBVMr+/P83Qduj0oBaIeIsUr2f1KVB9Al:tBVMr+/P83Q4TP46B9Y
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
x014.hopto.org:4444
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
7e55fd01c96f84a79956e90c1ab551cc636043c989902b32dcc0c60c97720ab0.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections