Overview

overview

10

Static

static

10

952ac15d63...ab.exe

windows7-x64

10

952ac15d63...ab.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    952ac15d63c149fe69bf8244baa71fea739ccb58a22e2cba83b01d6dbf688bab.exe

  • Size

    23KB

  • MD5

    e42c87e4e16c3b0619a13234b99e9e44

  • SHA1

    655a0fae9b2cd51e31725cf966f89bea8c1c91d8

  • SHA256

    952ac15d63c149fe69bf8244baa71fea739ccb58a22e2cba83b01d6dbf688bab

  • SHA512

    e7125f70390b85decb08ea0461e48508fea6a9a01593a197ba569e5e9491183e13e01dbdf6ba0f0189256bae4f5a0dbdb87473aa26773bd4e9a5c3f8389a9442

  • SSDEEP

    384:swz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZJ+:XTbC81NgRpcnuT

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

192.168.0.27:4444

Mutex

279d9875560cf85d9f3bc76b45479fdf

Attributes
  • reg_key

    279d9875560cf85d9f3bc76b45479fdf

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 952ac15d63c149fe69bf8244baa71fea739ccb58a22e2cba83b01d6dbf688bab.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections