General
-
Target
25E6CC56062C5781A4A19A16F1CB992B.exe
-
Size
5.8MB
-
MD5
25e6cc56062c5781a4a19a16f1cb992b
-
SHA1
86a4cf11444c897098ba5ab7fea5e816dd311e0c
-
SHA256
8fe6aabbb52a48c908c8b0455acc38f3d28bbfbabf2b9bec0e40eda054c60b65
-
SHA512
e1bca26b78aa1b15f9175bf8b77a40f63e5ac1ad156ef3dab382684678e183bb6080c765d604f236d363e6517aab5207d3847113e0cce43db1eefb215c435d60
-
SSDEEP
12288:OPt/nREznmTkZAP9WmIyXuwfYkI0MytARujKL8xSvEpZm6:CoD0YkYK
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
seznam.hopto.org:5050
Mutex
7aadcc80e3
Attributes
-
reg_key
7aadcc80e3
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
25E6CC56062C5781A4A19A16F1CB992B.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections