Overview

overview

10

Static

static

10

caaa5263db...b8.exe

windows7-x64

8

caaa5263db...b8.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    caaa5263db4330c246e82a67c5f0773c32478390644121a4555c90476bb526b8.exe

  • Size

    29KB

  • MD5

    ab2b571a310e636260d8bfc041dd6bf5

  • SHA1

    08dcfa9ae34809a7f6b468cd3ee6f175667ba5ae

  • SHA256

    caaa5263db4330c246e82a67c5f0773c32478390644121a4555c90476bb526b8

  • SHA512

    52993ffcb90d774dd5d750631620c1794e50a3ace4584162a424f69a686306d64523e4dc68b7ce96e0694941bfc35bb3efc5e045abe9d2514bf16c2f472ddb1d

  • SSDEEP

    384:7I8O5l7FbNdtMTbeFbSI30x5/0T6e7ommqDY60e8fdV5GBsbh0w4wlAokw9OhgOJ:C7HM0SiEFe6q30e8cBKh0p29SgRLO

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

192.168.1.11:1337

Mutex

ba4c12bee3027d94da5c81db2d196bfd

Attributes
  • reg_key

    ba4c12bee3027d94da5c81db2d196bfd

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • caaa5263db4330c246e82a67c5f0773c32478390644121a4555c90476bb526b8.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections