General
-
Target
DLLinject.exe
-
Size
43KB
-
MD5
d45480663e5b74794425c0ffe354bbee
-
SHA1
45fecd5d4512dd86464e36e63d459b95ffecfbeb
-
SHA256
482b4f745d80925974ef46ab24bc35d1c7f895c2881820ebef14fe5f1117a072
-
SHA512
f52e73bff29e8fc5e25b3325e2ff7967a3589d1c090ec0fa03f931a1276a664f903713b5363222e930589ca018464e84b123caf03bd2541876ca2b2b77760634
-
SSDEEP
384:XHZyhv6QNkli0yiQHJSNOW0eytTEjRqrVGzkIij+ZsNO3PlpJKkkjh/TzF7pWniV:X5W6ABiIJSNOW0e6ysauXQ/oH/+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
assault
C2
pro-fundraising.gl.at.ply.gg:43768
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
DLLinject.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections