Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c50c74721a340dfa457152405bb9fcf9bdd725b321510f8eaf2b23c4a68a6abb.exe

  • Size

    93KB

  • MD5

    d61b6c8d2031c9c14fd2ca8cac4abbd0

  • SHA1

    232a655eb7c720a90d30f4f51a3aa4fde319be2b

  • SHA256

    c50c74721a340dfa457152405bb9fcf9bdd725b321510f8eaf2b23c4a68a6abb

  • SHA512

    4649981329ec72d555af8888b3bc2b6e93d3569c232247f430147aa32b8f907dc7f1e188f3ec32c5a33fa95cf06f8c3719da033959cb1af709ab4e133a2b3e3a

  • SSDEEP

    1536:1emC+xhUa9urgOB9RNvM4jEwzGi1dDlDRgS:1egUa9urgONdGi1dRO

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

2.tcp.eu.ngrok.io:17881

Mutex

a5ecb8dd72f32c83945d9630db93a6c0

Attributes
  • reg_key

    a5ecb8dd72f32c83945d9630db93a6c0

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c50c74721a340dfa457152405bb9fcf9bdd725b321510f8eaf2b23c4a68a6abb.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections