General
-
Target
d04ecb70e47044b4ed527fe81abe4ec8_JaffaCakes118
-
Size
37KB
-
MD5
d04ecb70e47044b4ed527fe81abe4ec8
-
SHA1
21247b5ddc823d230f524d981e6996cce84b7988
-
SHA256
6070d57d506e71124a5c7170f596b87ef37810b9acb09e476a028b3a87d736b9
-
SHA512
eec94d12ee3a418dcefc062e885348b8c3bfdfcefa755d6394f8680a73fa08a440ed6ddcace075674affdfff13a0815ae93d2b90b9f742dc57ba13b857719886
-
SSDEEP
384:MyBqiUv54NLHdayszjfwnfgsWQLDrAF+rMRTyN/0L+EcoinblneHQM3epzXyjNrH:l9ZdJszjfwINQ3rM+rMRa8Nuqjt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
z1cker.ddns.net:3131
Mutex
081a1d1d651ced2e4611359815d2cab5
Attributes
-
reg_key
081a1d1d651ced2e4611359815d2cab5
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d04ecb70e47044b4ed527fe81abe4ec8_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections