General
-
Target
74d231416e53bb6f90f1e98e9cdccb3e_JaffaCakes118
-
Size
31KB
-
MD5
74d231416e53bb6f90f1e98e9cdccb3e
-
SHA1
3ffbe454aadaed84c1f54f0460db378b4d8a62dc
-
SHA256
b4067a250a0348a4d4c49809dc1b4ec4a837d9dde45755c3160e0df4e3509640
-
SHA512
1a3048ae71f8540d7424778d90aa904ac858473fd9aaf7c8231552925862756827f1492841f496844d8266467c6081b5737d757acd7abf9c0ce0b82dbbac496b
-
SSDEEP
768:FFG5TP1/plIzxTCfVYAvN1Zvy/QmIDUu0tifUj:Sb1ay/YQVkxj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
SUCKS
C2
127.0.0.1:1604
Mutex
a506b944ed6810f94ebd30057fc3ac55
Attributes
-
reg_key
a506b944ed6810f94ebd30057fc3ac55
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
74d231416e53bb6f90f1e98e9cdccb3e_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections