Overview

overview

10

Static

static

10

e24d42928e...18.exe

windows7-x64

10

e24d42928e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e24d42928e176e064e4754ff9e72ba74_JaffaCakes118

  • Size

    43KB

  • MD5

    e24d42928e176e064e4754ff9e72ba74

  • SHA1

    fa4141dd34e70ce4b83ccb0714b5b0c7ab2b1093

  • SHA256

    aa6178545abaed1c28a7b7ea77999baba82be8571520fe221f02c2176e672198

  • SHA512

    6ae68e28d01a95f8b06c4a981bcfabff9c0e30175fc26a62773f9304dad232ba50e03c6295fb7ff4f357b7f50c7f180eae7ce78d2d6697e1219cba2647e933d6

  • SSDEEP

    384:zZyT+FgpWoy7A3V14YiElIHAknzYIij+ZsNO3PlpJKkkjh/TzF7pWnr/greT0pqD:9lWol78V1BEgMuXQ/oO/+L

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

87.241.173.241:5552

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e24d42928e176e064e4754ff9e72ba74_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections