Overview

overview

10

Static

static

10

72f989d7a5...7d.exe

windows7-x64

10

72f989d7a5...7d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72f989d7a5d4e7f1b176c95998d6a0a1e575b05dd6882468ffad22366b63477d.exe

  • Size

    71KB

  • MD5

    d962b01af7f1bf5fd85effe5dd810cc5

  • SHA1

    e6031da3b57b4954ebfb5a6f7dca0a5b982a5c65

  • SHA256

    72f989d7a5d4e7f1b176c95998d6a0a1e575b05dd6882468ffad22366b63477d

  • SHA512

    d740dcf91b5c89327f8a77f120126737035f472dc673c6923ef3bf39fa3c5b4e4cbeb6b8be40c4c85bb45e408adf8a06ee359c3f6dff4d7690c7b9ce0bbcc8d2

  • SSDEEP

    1536:8GeFWPe3qNcoOSUq1zU7FJf2F0iZIq9XIft6/JT04GNrztiBVXiKMt9PMr+aF9bg:8B66vFAIf0T04xX/q9PZaF9b/4

Score
10/10
victimnjrat

Malware Config

Extracted

Family

njrat

Version

Platinum

Botnet

Victim

C2

http://pastetext.org/raw/eh2zaieezn:82

Mutex

svchost.exe

Attributes
  • reg_key

    svchost.exe

  • splitter

    |Ghost|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 72f989d7a5d4e7f1b176c95998d6a0a1e575b05dd6882468ffad22366b63477d.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections