Overview

overview

10

Static

static

10

4ce769a603...18.exe

windows7-x64

10

4ce769a603...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4ce769a603a13f220d98ae29eebe739a_JaffaCakes118

  • Size

    22KB

  • MD5

    4ce769a603a13f220d98ae29eebe739a

  • SHA1

    eb05a681d463012562f0e5299e1fc11b6bfbb9f7

  • SHA256

    3c24cff432f8ad50754c585b1138e85b6f9ef523d72f6e6918293d4651eaba5b

  • SHA512

    079a0897147bf870e6cbd3093db90886c2f377d087290f47364cc189a1a76070232929ca678ac469e67bafc532ea4dce37af0419dfc6295bee58064f119feea2

  • SSDEEP

    384:D8aSyS9gB3Y1KIay2X8cLZI6XgxsGJVPpmRvR6JZlbw8hqIusZzZdS:I589tXvRpcnuj

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

srpmxx.ddns.net:5552

Mutex

8dbcd8f8075cab692cafe31a7246728f

Attributes
  • reg_key

    8dbcd8f8075cab692cafe31a7246728f

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4ce769a603a13f220d98ae29eebe739a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections