General
-
Target
0ee36c9271c99144a660e5697700118b_JaffaCakes118
-
Size
37KB
-
MD5
0ee36c9271c99144a660e5697700118b
-
SHA1
3bf804ab393e1a91298841e93aed50e4ab9f051b
-
SHA256
edecaba3d8685d862ae0b22e0b2b6f35d6da6b77c739fc2bea60af83ec88a938
-
SHA512
3a6391920abc685a3c3c320bf80e862c44b561c810172b504d521ceec55f01a428095ec9a9dd19f3233ad9fe2d994dcb0eeb764ebde66050729b85bf48b56628
-
SSDEEP
768:Wo1FqrEP8P02btdu7mfrM+rMRa8Nu7Bt:WtrEEMecqg+gRJNs
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
IT
C2
khan.webhop.me:5500
Mutex
23bbf36f274bf617e2ceaf88f0058b4e
Attributes
-
reg_key
23bbf36f274bf617e2ceaf88f0058b4e
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0ee36c9271c99144a660e5697700118b_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections