Overview

overview

10

Static

static

10

4bb030e3f9...9N.exe

windows7-x64

4bb030e3f9...9N.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4bb030e3f9d4a948cf4d075135c343d9f39f0ad1c35153e93603b4513c102809N.exe

  • Size

    23KB

  • MD5

    dd1ef07a97d7775f3c4ca8a535259fc0

  • SHA1

    0948c6b31b4e977d57ca170bf805fbad3454035f

  • SHA256

    4bb030e3f9d4a948cf4d075135c343d9f39f0ad1c35153e93603b4513c102809

  • SHA512

    d9c1655909641d06712ff3def53b0611036c5ec4231bc2c5253b6a33e5a7e4ebf4b460400c885b330a6cfa3b40eec9315fee7a67fddddbb223907882c49dd838

  • SSDEEP

    384:ec6CqbFYh3odrVCGiHssDB4b6i6fgpEupNXRmRvR6JZlbw8hqIusZzZMV0:xIU0tw3Rpcnuc

Score
10/10
alialitalynjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

ALIALITALY

C2

SkypeTcp.no-ip.biz:95

Mutex

a8222704e50eaec7b16bac0b7b54fc4b

Attributes
  • reg_key

    a8222704e50eaec7b16bac0b7b54fc4b

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4bb030e3f9d4a948cf4d075135c343d9f39f0ad1c35153e93603b4513c102809N.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections