Overview

overview

10

Static

static

10

ee4488c7a7...8N.exe

windows7-x64

8

ee4488c7a7...8N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee4488c7a72d0d32919434817a39f71243974ed2690c61fa6d65071f7c8f8dd8N

  • Size

    37KB

  • MD5

    b01aacd411132ba26719cb5b13104590

  • SHA1

    15cac8eab1ff1ef17f2b3a78ad287d1b9b526cc8

  • SHA256

    ee4488c7a72d0d32919434817a39f71243974ed2690c61fa6d65071f7c8f8dd8

  • SHA512

    b3c822bb8327ba50dbd2310d1b9bd27277876e198af2304aa53a76467be2e6e3cf84408d12b69c1d0df55956de881d51ad681810160b2c4559048d3549377d74

  • SSDEEP

    384:a2FZxj6ic7ri5Z7JAyk/Y4IvDfZeKQVerAF+rMRTyN/0L+EcoinblneHQM3epzXV:DFnHJ7k/Y4IDZbQorM+rMRa8Numet

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

string-pension.gl.at.ply.gg:58688

Mutex

0d20f9ceebca5d8748160666528ac39b

Attributes
  • reg_key

    0d20f9ceebca5d8748160666528ac39b

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ee4488c7a72d0d32919434817a39f71243974ed2690c61fa6d65071f7c8f8dd8N
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections