Overview

overview

10

Static

static

10

e1639d6a42...18.exe

windows7-x64

1

e1639d6a42...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    e1639d6a42f5a77902a248242c5f415b_JaffaCakes118

  • Size

    14KB

  • MD5

    e1639d6a42f5a77902a248242c5f415b

  • SHA1

    4cbce1d834673b2b90449518d4c03e6449946fc2

  • SHA256

    df1fcd609054e338828fec845aa74dce835b0f94f968c17909b4995a2112f19d

  • SHA512

    45e0f2411f240b4cce7188b2ad719797647e7c3d879dd754a845cf694b38ef3c0c598bde476137527b618d1b4d8ac6a752ae90da035ad5a835d15fc06b7f71ef

  • SSDEEP

    192:b+8C+EKS0O9ejYTDG8bcp4LljanieXubWyD9JEBkGxVXrJqoN4RJw:bNVjYTDG8gpaBeXTyD3EnxhIoNL

Score
10/10
nyancatrevengerevengerat

Malware Config

Extracted

Family

revengerat

Botnet

NyanCatRevenge

C2

microsoft.ntdll.top:4044

Mutex

4f109136b2fb4

Signatures

  • Revengerat family
    revengerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e1639d6a42f5a77902a248242c5f415b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections