Overview

overview

10

Static

static

10

5b6adc9ba8...18.exe

windows7-x64

10

5b6adc9ba8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5b6adc9ba87c053fee4c8fadb3b6d5ba_JaffaCakes118

  • Size

    43KB

  • MD5

    5b6adc9ba87c053fee4c8fadb3b6d5ba

  • SHA1

    6c6af62824df3b78da797d7b6557acec91b5ec63

  • SHA256

    d092bd27cad4b713f4af6efa8ac6c8ddee9f074d929e43eead432351ad3bca8a

  • SHA512

    86c3a49958996dd9b4c0cf332398c3968423d83ec68ab298bbc0c3a02abfd95669717d0b2bf2a99392a87f89ea42a97284d7086fb656dac1c07ee71b445ca725

  • SSDEEP

    384:JTZyI/InOFohMFsyinoM84OVOGEAj8ZHB6zwIij+ZsNO3PlpJKkkjh/TzF7pWn/5:JdNe6FpioFlOJauXQ/oyUM+L

Score
10/10
???? 10 ??? ?????? njrat

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

???? 10 ??? ??????

C2

0.tcp.ngrok.io:18304

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5b6adc9ba87c053fee4c8fadb3b6d5ba_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections