Overview

overview

10

Static

static

10

174b637614...18.exe

windows7-x64

10

174b637614...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    174b6376143353a0a7d6415b0a435edc_JaffaCakes118

  • Size

    31KB

  • MD5

    174b6376143353a0a7d6415b0a435edc

  • SHA1

    63cc7eafc3b855ba5278e71ee0a6dc8263258657

  • SHA256

    0ea1f0010b13684e6a230316e8ab8518067fcda19d5e7151811ab7f4937e721b

  • SHA512

    c5721fd5b2203a3ab1a06cef7b060c14340845183a37e2fe09bd96195521eadac732b2bf6df10830b4df9ec143365a6a843bcbab69b84dd2f714a8a3b74f0f43

  • SSDEEP

    768:NBhO5b13hdwzxLy3os0O/dMRvCnQmIDUu0ti2Lkj:bcZ6eh6gQVkyj

Score
10/10
mybotnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

MyBot

C2

88.200.215.65:6522

Mutex

a6f6dec65ecdc324d2790c1754870f3a

Attributes
  • reg_key

    a6f6dec65ecdc324d2790c1754870f3a

  • splitter

    Y262SUCZ4UJJ

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 174b6376143353a0a7d6415b0a435edc_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections