General
-
Target
11ad898bf963ccf6688d14738e6c23e0_JaffaCakes118
-
Size
23KB
-
MD5
11ad898bf963ccf6688d14738e6c23e0
-
SHA1
c29555b0b76c8377b2a22a428b8582cb85141579
-
SHA256
72e0875539f74c51cf3d87257279316ffd0c4e427602aecc6ce57cc92fd89bea
-
SHA512
5abb8ef2921f4bf2db8bc5417e6e15f584a708fec58db5aafd160eebcec4cb2649ebebc71c873e63fc4cb8844650ac21feb6f519622d81f3a7cfe792d1033019
-
SSDEEP
384:YoWtkEwn65rgjAsGipk55D16xgXakhbZD0mRvR6JZlbw8hqIusZzZDNU:H7O89p2rRpcnuWU
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hazem10.ddns.net:1999
Mutex
687f8be71a3fe61b6992a19f659cfa53
Attributes
-
reg_key
687f8be71a3fe61b6992a19f659cfa53
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
11ad898bf963ccf6688d14738e6c23e0_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections