General
-
Target
41b7e09608ef2fccf2483d2123a67b0f.exe
-
Size
52KB
-
MD5
41b7e09608ef2fccf2483d2123a67b0f
-
SHA1
0bd1e8b13c2e138c0016272f62fb7dbccac57eb4
-
SHA256
a796d7e512558cf1de868e996dd8ef7651956fe71e8c84063986d801098120d6
-
SHA512
b7df2cc1aa5cf81936144a3ea62b7404e14651c5cb2fcbf2fee416d22db514601edf1e38ce75a07c0bbe869ee01ef63e20f7e3b84b7db8120fc66b4841f22ea1
-
SSDEEP
768:+LdGdkryy3i+wLrM+rMRa8NuAGt5pFA3:+LdGyeyyJU+gRJNz
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
NHZxReports
C2
147.50.253.6:9997
Mutex
9958061a0028ef3328b60cdcfe513c98
Attributes
-
reg_key
9958061a0028ef3328b60cdcfe513c98
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
41b7e09608ef2fccf2483d2123a67b0f.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections