General
-
Target
20be01cd1aa39e566553873af423fbd776b48b59150b13dcdf44c3e5af6c9932N.exe
-
Size
22KB
-
MD5
26d64c135e8e272159a77c250c8eb510
-
SHA1
b3956b4a821191be637893033db406b0110b1f1d
-
SHA256
20be01cd1aa39e566553873af423fbd776b48b59150b13dcdf44c3e5af6c9932
-
SHA512
9d47094e6474d0feb98e5696bc45f9ee62765e872e3f1e4993e6ee0f288aa003f5ce96e2addc28dd496e10e1a55a6542033a48786136b3c1d4c2a1ef6e1b2947
-
SSDEEP
384:GQeCITxTz/w8nEUeC9UBNM46VgDO61Ba6hRmRvR6JZlbw8hqIusZzZqNP:R2brV93RpcnuhP
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Test
C2
127.0.0.1:1616
Mutex
e34861c344caaad773c61f8376b103c3
Attributes
-
reg_key
e34861c344caaad773c61f8376b103c3
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
20be01cd1aa39e566553873af423fbd776b48b59150b13dcdf44c3e5af6c9932N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections