Overview

overview

10

Static

static

10

Fps0ptimiz...ik.exe

windows7-x64

10

Fps0ptimiz...ik.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Fps0ptimizer_ByKartavik.exe

  • Size

    93KB

  • MD5

    1a5e53bb0bcbcbb680fbb54a55a1c630

  • SHA1

    5d420fbdfa84f3828ccbfa7ca1709edaddd22839

  • SHA256

    865d9448dab0a512e40d8cf95d83cccdc9bb32806466d5ae3d2a30301f299a80

  • SHA512

    1dcd0ac4af1b16770bf163060838f33fe534762d5b4e42d83c9733cdaaf827852a14f18bbccb4c802ef87f8fa3d39707a96bcc60e40e73b23043371a9537495a

  • SSDEEP

    1536:HemC+xhUa9urgOB9mNvM4jEwzGi1dDYDLgS:HegUa9urgOidGi1dmE

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

0.tcp.eu.ngrok.io:19331
Mutex

48a41a18500fb55c8cc19095299f8b6a

Attributes
  • reg_key

    48a41a18500fb55c8cc19095299f8b6a

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Fps0ptimizer_ByKartavik.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections