General
-
Target
12b318bf5a41cd4d2eecfc8b8755469e_JaffaCakes118
-
Size
23KB
-
MD5
12b318bf5a41cd4d2eecfc8b8755469e
-
SHA1
969201beba5197356bf125d836d6b1d053de0a7d
-
SHA256
a9e0729527f5db3a12dd4178a6d1236fe6d6fbebc092b8eb21a42942a619ff99
-
SHA512
bc5e593b0e7ad54e8f8c6d52cb0adcaf5692ac03fdae1d47f7ebc951115eb56fd3fe25a1d67dac5bfd617b8b0a34bf96ab065a1515f46b857fb3b5369e4b4e03
-
SSDEEP
384:Idwz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZcC:IOTbC81NgRpcnu0
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
abc tool
C2
1.2.7.0.0.1:3602
Mutex
956b9b5ca9060209a0c42f25a6906443
Attributes
-
reg_key
956b9b5ca9060209a0c42f25a6906443
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
12b318bf5a41cd4d2eecfc8b8755469e_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections