General
-
Target
1f2eaf6046e04db7418d1bbe8abb746b_JaffaCakes118
-
Size
23KB
-
MD5
1f2eaf6046e04db7418d1bbe8abb746b
-
SHA1
2102c89c046d3b20acdbed9e88d8d653b0532a11
-
SHA256
355de2645c0630efcbbe0fffa82b4d980dc8a39125f1f98eb1bb5a3dc02ed3dd
-
SHA512
8d869984edeaf549ba72a093b8cf2c710fc6e04c27a6ab6921466e3a701a866ff64a3627460b4a1af48e11e4e0ff21f97863957564f20fcd2332eddeb3d8c351
-
SSDEEP
384:uFQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZjB:uK5yBVd7Rpcnue
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
zerip.ddns.net:1177
Mutex
59176411e6976993f96dcc65b04bc11d
Attributes
-
reg_key
59176411e6976993f96dcc65b04bc11d
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1f2eaf6046e04db7418d1bbe8abb746b_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections