General
-
Target
d23bff11e9aa5f743e7a0063b86b2b9a59a6dc56760eb37498a2df3386150603N
-
Size
23KB
-
MD5
17b70e5760d1cd01cdf136d0e4ef41d0
-
SHA1
c000eae79731c8c0a44332a15c0e019b6a98c0c1
-
SHA256
d23bff11e9aa5f743e7a0063b86b2b9a59a6dc56760eb37498a2df3386150603
-
SHA512
fcf229adc35f1cabba02d961b280391e1a5e1e05fcc2f422b76a40642e0a6b142b47a116bc524ade30391042a232bf02fec90c7ce6fa938ab8f30fd8281305cd
-
SSDEEP
384:MMK6b2GZsx/Yr1+liORH1kcPFQ6Lg9gSOYRr9mRvR6JZlbw8hqIusZzZL6:fb9glF51LRpcnuF
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Lammer
C2
csgocheats.ddns.net:1177
Mutex
ef4b9e3dcbc63f1d8507fa3bc932f5d9
Attributes
-
reg_key
ef4b9e3dcbc63f1d8507fa3bc932f5d9
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d23bff11e9aa5f743e7a0063b86b2b9a59a6dc56760eb37498a2df3386150603N
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections