General
-
Target
2dd0e7fe0e4b29fd29b4339bd0a0f95b_JaffaCakes118
-
Size
29KB
-
MD5
2dd0e7fe0e4b29fd29b4339bd0a0f95b
-
SHA1
389f289102ab93c428a7f53856d754fd13fe496e
-
SHA256
2a7738db6fe64b6aca250f682f115fb9e9e2a12d638755b7a207475f22f941a2
-
SHA512
f3de4e3c7ca8152e32bdefbd6d2f8fb592d8b10d8851046759b8ad9cd70c31caba7e982b81f394b848f5d4adb244ff243ca31f6e9c057ad26f5b865381efbd01
-
SSDEEP
768:9K7ZW4Oakw1Bn33sqQiKeoBKh0p29SgR08:9K78gcdiaKhG29j08
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.6.4
Botnet
تلغيم
C2
alihack1234.no-ip.biz:1177
Mutex
e79d569ba77562f0d4316e586835f0a2
Attributes
-
reg_key
e79d569ba77562f0d4316e586835f0a2
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2dd0e7fe0e4b29fd29b4339bd0a0f95b_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections