General
-
Target
40755d5e32a35c44dff419ce223693bb_JaffaCakes118
-
Size
43KB
-
MD5
40755d5e32a35c44dff419ce223693bb
-
SHA1
049ddc918139b0467c36ac71932f02aeac6c983e
-
SHA256
8f2357461e61502b9c25c60017ff806638e7342479a9ddc46dcfd4eb633d14b4
-
SHA512
dafe4bad3a22f8b92b284daabbedd98506249cd189e8bfa87003ca2cf3d8f855def8887f12f0a846b459d2c99f883df24ccd483932b69813b5d70607f165b902
-
SSDEEP
384:NZysDYolYxOoyi025iQKGMlo8FQDa9D9O5UE5QzwBlpJNakkjh/TzF7pWnSgreTr:n+ouIli00izjoaUvQO+p+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
HacKed
C2
ultracrystal.ddns.net:5552
Mutex
explorer
Attributes
-
reg_key
explorer
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
40755d5e32a35c44dff419ce223693bb_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections