Overview

overview

10

Static

static

10

[battery] ....6.exe

windows7-x64

10

[battery] ....6.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3d78d4bd0c12a3ca5d6749184db95c4e_JaffaCakes118

  • Size

    10KB

  • MD5

    3d78d4bd0c12a3ca5d6749184db95c4e

  • SHA1

    747b6906c083f92d62c787d09139aec0fda4a86f

  • SHA256

    cbeedf9b1593555e4e7109a17e5416ef5dd48f54df1e534b0cbbc412e5ffd053

  • SHA512

    4d0807b9b62eaf7f0edc921b46422ca6e639b24a1e28f9732da1bc3a4895923df5dc7e81184ea8d5f234f940e7586a9ce0ab3c80cd02273b5169f33d095b553b

  • SSDEEP

    192:FzqUPVwtOUc29LGBwa1FZ+Q/RxVKpnv3iaYDCNEY0uZafrUIypWMbVPC:FZPWYMGBwal+W0nnpuY9ZafQITMg

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

rotsob.ddns.net:1177

Mutex

c8ac1b8492a6bec75d83092699a284be

Attributes
  • reg_key

    c8ac1b8492a6bec75d83092699a284be

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3d78d4bd0c12a3ca5d6749184db95c4e_JaffaCakes118
    .rar
  • [battery] ak47 for cs 1.6.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections