General
-
Target
KayCF V0.1.exe
-
Size
45KB
-
MD5
18d813a784d7926316fb249ae28edba0
-
SHA1
a5e451ea3a4eeb8b5f887dee5c9233af266acb2e
-
SHA256
9b16f074c824002196b810a1a0266671b9ca1de03b31c5049efb67f4dfc35863
-
SHA512
a102f255d9639682e963fcc83c34f3f7a0f7acdddc84f1ec7a6883694262069dbe465a2f8226ccaf78c76fa95eecc6f643292d2af535dedc683897553f0d713e
-
SSDEEP
768:PW4V6+yDRpcnuY5wMKMY/mMJHUCIv3HWRpP9E9iuZKpqv:PW4VcDRWuY5wNyMuCPH1IzZiqv
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKeD
C2
seucrackudokk.duckdns.org:1177
Mutex
07f6d1e4c9fe6c1dfd6a7694fc66b8ed
Attributes
-
reg_key
07f6d1e4c9fe6c1dfd6a7694fc66b8ed
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
KayCF V0.1.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections