General
-
Target
47c26a72ba3151f19185fb415c3ffaf4_JaffaCakes118
-
Size
37KB
-
MD5
47c26a72ba3151f19185fb415c3ffaf4
-
SHA1
fd25e338dfe3a110da4026d654129fc03c26e4fb
-
SHA256
17684bcecd6beef28b4668f0085822004a5e0bcc5698ec7d9d903205f695448b
-
SHA512
de57c78ba072702ac1f713f925e6a801993630a0aefc83b55008041de2513a5031fcf4f854175ac8205ca10434ec268fa269d459093a57ce4f667a2c700a90ef
-
SSDEEP
384:gwevEiTblvpWNcZ0y8fJCtTHVGLkC+xlrAF+rMRTyN/0L+EcoinblneHQM3epzXv:feBTZ38fJCtT0d+LrM+rMRa8NurLt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
govno123.hopto.org:7777
Mutex
aeeb555159010b7ad67deb5b72c235aa
Attributes
-
reg_key
aeeb555159010b7ad67deb5b72c235aa
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
47c26a72ba3151f19185fb415c3ffaf4_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections