General
-
Target
2b6d4350fcc1163fd53278c7060acc64_JaffaCakes118
-
Size
31KB
-
MD5
2b6d4350fcc1163fd53278c7060acc64
-
SHA1
1caa9fa73f0b62f447e2ce2c92a180b6ba865a78
-
SHA256
9a043e6780007c738a39cfae366956da9733b99e635b6d4e1835cc915edd05e5
-
SHA512
911bac0a0dd4facafb0f2ef2b78b7f70011c3b1eb3ce7ce594aebc435b7e2a1441fa82af598987cb1975bc3feb0af5c9a32855a21f1b382a760d27163494c4c8
-
SSDEEP
768:nXuU87OXB9QzxryXSwAvVtxvq/QmIDUu0tih7Sj:9866/fgQVkhj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Bot
C2
127.0.0.1:6522
Mutex
97deb3f017dfa20dec7ce3bc0fcb445f
Attributes
-
reg_key
97deb3f017dfa20dec7ce3bc0fcb445f
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2b6d4350fcc1163fd53278c7060acc64_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections