General
-
Target
3ed2318e56f9a575e44d72d913ef6957_JaffaCakes118
-
Size
95KB
-
MD5
3ed2318e56f9a575e44d72d913ef6957
-
SHA1
54fa35e4a9dd162e50c04431098d195e7b6cd8c5
-
SHA256
af4499ed44414f08163cbf2bae5399fa75ded2b44524e800e7e897440eb45a8a
-
SHA512
c91fb2174e4d8dad9e670ff855dc9525fd7e9c3febbd9ca4189ce9f1e02ee8e1b521506640c745c7847930b0ff99a7fa127abfe314bea621eabeda863c759cfe
-
SSDEEP
384:3Ev3qiUDCou44pvayFzCe4nfOsWQLFfrAF+rMRTyN/0L+EcoinblneHQM3epzXMr:eUspvJFzCx2NQhfrM+rMRa8Nudet+v
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
mischa228.hopto.org:2121
Mutex
0ec1047b7dbded2390b0348f753c20bd
Attributes
-
reg_key
0ec1047b7dbded2390b0348f753c20bd
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3ed2318e56f9a575e44d72d913ef6957_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections