General
-
Target
fd79a5ed99bcb5f6468512a4dc8f0874_JaffaCakes118
-
Size
341KB
-
MD5
fd79a5ed99bcb5f6468512a4dc8f0874
-
SHA1
a076374ed3f5c6ce85d7745eb4038958af9a05be
-
SHA256
0d6fdefdaad154426d2e5c89e8e1b80964ab6bc9b3ed976483cd1871de5ea761
-
SHA512
21f4ea15a3819ce3bb08ba78cd3f298ca7e0b5e0e4147661cb0ec36748f93b92da5ffcc46c6c2934a32aa663a278d33e44e4a55cdc875edf31af2970182085f8
-
SSDEEP
1536:zNCXSY68+OHLBdgIZJlL4goAP7FTRubySSksvYFcfiueXA82nqBcQxfJ6fB7kSO8:8
Score
10/10
Malware Config
Extracted
Family
asyncrat
Version
0.5.7B
Botnet
new
C2
newfrost.ddns.net:6666
Mutex
AsyncMutex_6SI8OkPnk
Attributes
-
delay
3
-
install
false
-
install_folder
%AppData%
aes.plain
Signatures
-
Asyncrat family
Files
-
fd79a5ed99bcb5f6468512a4dc8f0874_JaffaCakes118