Overview

overview

10

Static

static

10

0c4506fed8...18.exe

windows7-x64

10

0c4506fed8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0c4506fed8b00d3050fc56b51d25b753_JaffaCakes118

  • Size

    23KB

  • MD5

    0c4506fed8b00d3050fc56b51d25b753

  • SHA1

    db89e1ff4bdc7cf9313de90449f7454e2beac7fc

  • SHA256

    5227a700dadf34fafc496a1b717d272739988c2c37dbdb0c5282314ddae44280

  • SHA512

    63095c10aaf5c43e20822b84bb92d0f57b5ec04169b820607a02e42e799a9775e1739355501043f8993a030b5da4e8b5f116281ff3ec50f6222887c323521e45

  • SSDEEP

    384:0oWtkEwn65rgjAsGipk55D16xgXakhbZD0mRvR6JZlbw8hqIusZzZDc:j7O89p2rRpcnuv

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hazem10.ddns.net:1999

Mutex

687f8be71a3fe61b6992a19f659cfa53

Attributes
  • reg_key

    687f8be71a3fe61b6992a19f659cfa53

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0c4506fed8b00d3050fc56b51d25b753_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections