General
-
Target
47b70e033ddce9fd389dfd161a402b3574182e068ff7c7768c1503617424b7f0N.exe
-
Size
65KB
-
MD5
c4a0f6cbc647f85433ac4959c56b09a0
-
SHA1
acc0514e0d5d643be5f1fd62b29bea3bcf3f748a
-
SHA256
47b70e033ddce9fd389dfd161a402b3574182e068ff7c7768c1503617424b7f0
-
SHA512
071bfb66120b600f7439f1818ab4596bf4b1a5136f69a70c427aa85841218a2a516a84284cdc2726bd143ce3601dfc4beec50a048c60966dfbdc3f8dbe8a90a5
-
SSDEEP
1536:+cqmGhoN36tEYQviFw1acSrBnvAafLteF3nLrB9z3nIaF9btS9vM:+cqmGhoN36tTQviFCFABnlfWl9z4aF9d
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Platinum
Botnet
Машонка
C2
127.0.0.1:8848
Mutex
System32.exe
Attributes
-
reg_key
System32.exe
-
splitter
|Ghost|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
47b70e033ddce9fd389dfd161a402b3574182e068ff7c7768c1503617424b7f0N.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections