General

  • Target

    7b864591a77a15197d9f25ed3e625b50576ffc061f2849ac6fcc245d296b7357.exe

  • Size

    29KB

  • MD5

    343f28d15f8853545992389029be1dca

  • SHA1

    961f81167a3666055e770322ddb6950d728dbfa3

  • SHA256

    7b864591a77a15197d9f25ed3e625b50576ffc061f2849ac6fcc245d296b7357

  • SHA512

    21c78cf94855d3689fa6e79a10fd17196eec45304ab78c3720a330d74ef86575528cbcfc5a117cebcc2a516eb48758294eba7fabeddf9738363963ba441c13ca

  • SSDEEP

    384:eos5l7l7EMrof6oyr/5NxrimmqDWD4IePUGBsbh0w4wlAokw9OhgOL1vYRGOZzmg:y7GMroynbprsq04IePBKh0p29SgRAM

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

clienta

C2

achraf4.ddns.net:4500

Mutex

59d56b3983b444c86e2da951d0302f3b

Attributes
  • reg_key

    59d56b3983b444c86e2da951d0302f3b

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7b864591a77a15197d9f25ed3e625b50576ffc061f2849ac6fcc245d296b7357.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections