Overview

overview

10

Static

static

10

ab3b97a8cc...fN.exe

windows7-x64

10

ab3b97a8cc...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ab3b97a8cc506737750b570c5d4bb1543153136f67781bfa908dc025fd1c72dfN

  • Size

    43KB

  • MD5

    6cfc0db08cfdb9d82e675115da38f660

  • SHA1

    b5731b939b4561c8291a92fc0c178d2b35da6286

  • SHA256

    ab3b97a8cc506737750b570c5d4bb1543153136f67781bfa908dc025fd1c72df

  • SHA512

    71285c50be8a8ab4452e477c9598e89a3168c5d991f6ac46bab3e8c8b036a03ffadad830bc8addfbfc42c4e983fc96d5d4b4dab8b7635cb56cd07bf69ba84732

  • SSDEEP

    384:UZyaJNxdW/IUyNZs/5OFile+eEzll56ljzYIij+ZsNO3PlpJKkkjh/TzF7pWnpml:invxIghNZ85OFillhlyDuXQ/o0C+L

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

148.251.75.168:2709

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ab3b97a8cc506737750b570c5d4bb1543153136f67781bfa908dc025fd1c72dfN
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections