Overview

overview

10

Static

static

10

1ed0c2e213...c7.exe

windows7-x64

10

1ed0c2e213...c7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1ed0c2e213e674c8a95694c9e19361c7.exe

  • Size

    93KB

  • MD5

    1ed0c2e213e674c8a95694c9e19361c7

  • SHA1

    05446e3404b3171264fc344bf4013eb8ea2cf740

  • SHA256

    6dfe16f82116f1537efcac4f015247d28339062bcbaa7fc75c9486caa76a9d0d

  • SHA512

    381fd14b550674d0214d75d203264947078d874afa91122bfad5fb96c3a523fddf1dccd6c69e46c6590ca1ab9025a647e253188e7b9927f0baab8bb199c1d9c7

  • SSDEEP

    768:/Y34G/jglPPMJI08+EyrERm9hX+JlwA461mXxrjEtCdnl2pi1Rz4Rk3qsGdpYgS7:RG7gdQ8+f4mXpA4tjEwzGi1dDGDYgS

Score
10/10
debilnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

debil

C2

hakim32.ddns.net:2000

178.215.236.227:4411
Mutex

364d88128926b2e822553333b20c197f

Attributes
  • reg_key

    364d88128926b2e822553333b20c197f

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1ed0c2e213e674c8a95694c9e19361c7.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections