Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

04/11/2024, 23:08

241104-242eea1rfn 10

04/11/2024, 05:23

241104-f27yhstpbs 10

28/09/2024, 10:19

240928-mcp5qssgma 10

General

  • Target

    4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814.exe

  • Size

    22KB

  • MD5

    ee653dcd9ed87ec3319c0f443c8a54df

  • SHA1

    63a45f8da331e303a8ae7e93df190a4443a13b57

  • SHA256

    4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814

  • SHA512

    e9cd28d1f6d4d9ddff7943021e3795489941f419aabd649b378d5d0992316751c5418068983b5d26feb6178c2ace2c12dded94839d1f70c6e59682c26562f5e2

  • SSDEEP

    384:IsqS+ER6vRKXGYKRWVSujUtX9w6Dglo61Z5DVmRvR6JZlbw8hqIusZzZSZQ:/f65K2Yf1jKRpcnupQ

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

client

C2

akamaru.ddns.net:1605

Mutex

aa15bd929c7132fe8f63fd4d0ae48d6c

Attributes
  • reg_key

    aa15bd929c7132fe8f63fd4d0ae48d6c

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections