General

  • Target

    74f1845cd6aa9e8d32d7b8e4a9133b39d456bab833ce51138f8af7c3617c8062

  • Size

    5.9MB

  • MD5

    9ca2ecce674b0a90ab814578dd4a2aef

  • SHA1

    43b6b5f7db556552fc8bcaed9357cf5d1a27644a

  • SHA256

    74f1845cd6aa9e8d32d7b8e4a9133b39d456bab833ce51138f8af7c3617c8062

  • SHA512

    d61ee8327431acad7f7ef01592a666c67fd1c9f752fea4db9de86d2e882f9d8b2240338f67022d6076f1e4c4e4bdaf6633cace5ace0a389f976647e0cdef37ad

  • SSDEEP

    12288:9Pt/nREznmTkZAP9WmIyXuwfYkI0MytARujKL8xSvEpZm6:7oD0YkYK

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

seznam.hopto.org:5050

Mutex

7aadcc80e3

7aadcc80e3

Attributes
  • reg_key

    7aadcc80e3

  • splitter

    @!#&^%$

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 74f1845cd6aa9e8d32d7b8e4a9133b39d456bab833ce51138f8af7c3617c8062
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections