General
-
Target
286d91e1d25780b99e04edc0d880e229_JaffaCakes118
-
Size
23KB
-
MD5
286d91e1d25780b99e04edc0d880e229
-
SHA1
8ff7f38b92e5f973d3cc9d436a5beb64982e390b
-
SHA256
72e6c01daffadb74c9ba7253615ff48d8877f65d6ec79feee82d089634655a5e
-
SHA512
93815099e21f6b325670ff8a0ec40f18ae00edd6f610b394fab3a6c436c88db96a2dec91672555e121d893d4cb0dc0431a3cfa31cfcb0aca467780d9dbd38219
-
SSDEEP
384:+Gwz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZ+V:qTbC81NgRpcnut
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
usb
C2
197.245.219.168:1443
Mutex
5e7917ea1a0a3cedd651a89caa506dd1
Attributes
-
reg_key
5e7917ea1a0a3cedd651a89caa506dd1
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
286d91e1d25780b99e04edc0d880e229_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections