General

  • Target

    testme.exe

  • Size

    93KB

  • MD5

    007cc72f39b8261fda0d3ca9054f46bc

  • SHA1

    7a2d2aaa860bced45ebdaa41eba3412c715d27fd

  • SHA256

    b10f27a30807f8c7e6cd91d168b092a03768882b77b2122e5598f01a5c04c0c7

  • SHA512

    2b1894aea4345bb81fa34ddad67e995b1050cbe57760ba3437733f0a7ecf3832e58bbf3cf655254c5744f13e3aa0f56ed891ab4e8d3c715aaa454ac49a565dfc

  • SSDEEP

    1536:7x7QHRsXQQEtQnHRegjEwzGi1dDXDtgS:7xrXQQEtQnxexi1dX6

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Hacked!

C2

hakim32.ddns.net:2000

127.0.0.1:8080

Mutex

94fd569ecca6fc088d293c04362d882f

Attributes
  • reg_key

    94fd569ecca6fc088d293c04362d882f

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • testme.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections