Overview

overview

10

Static

static

10

d5a9ac5bb4...fN.exe

windows7-x64

10

d5a9ac5bb4...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d5a9ac5bb4ec71dd952250b5421f3bb38e0b94110de36d413a28704b5d3c599fN

  • Size

    31KB

  • MD5

    adaa3ae98fad53f8cfb54266fdc4f710

  • SHA1

    56ec60bc09c0510ec0f5d60aa6d7662a6d273804

  • SHA256

    d5a9ac5bb4ec71dd952250b5421f3bb38e0b94110de36d413a28704b5d3c599f

  • SHA512

    dfb4076abd2de0b1b1fd3408f45505c363fcd3e74ae649778d07b4cdb4f4a687b9bc77177ca0c28b82a67f5ccadbd7237471f4cc96ee5bee5220f98a1a34738c

  • SSDEEP

    768:ilS569DdxkzxP6bYMCG3VQNvqjQmIDUu0tiFBj:Xqq27icQVkOj

Score
10/10
explorernjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

explorer

C2

154.197.69.22:6502

Mutex

032d537ea8a490a45dedf853e1d3dc09

Attributes
  • reg_key

    032d537ea8a490a45dedf853e1d3dc09

  • splitter

    Y262SUCZ4UJJ

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d5a9ac5bb4ec71dd952250b5421f3bb38e0b94110de36d413a28704b5d3c599fN
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections