General
-
Target
e921cdca9fc9fa7a5da432eb961b6a00d5604eca01f9333fa9a309ec92574789
-
Size
63KB
-
MD5
421fe0f04a1c158dcc74a22412497c40
-
SHA1
4fe2f57ad4abf329a77cc2fd9d8ace336d29bbaf
-
SHA256
e921cdca9fc9fa7a5da432eb961b6a00d5604eca01f9333fa9a309ec92574789
-
SHA512
c2248f0a61697e44aa7378c4518b3d1389ad3b1a644df8c053a526aea1b2138ce32b9c73542be09d5730b5f50bb40b8830e4d9545c57173d618d8f13ca4f0bf0
-
SSDEEP
1536:yHMfnYi9brhD7yHAaJtI+9CfU5JtNNMcvVzR2y:ys/Yi9brRuHjvJNMc9F2y
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v2.0
Botnet
HacKed
C2
ole.cloudns.ph:5439
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
e921cdca9fc9fa7a5da432eb961b6a00d5604eca01f9333fa9a309ec92574789
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections