General

  • Target

    84e19fdbbf684408ba2eeb96d01f1219_JaffaCakes118

  • Size

    28KB

  • MD5

    84e19fdbbf684408ba2eeb96d01f1219

  • SHA1

    e8ef86328b4fc6de391fdebe69931546bcb29adb

  • SHA256

    312b0eb7bfb4618339d424ce828b4956c50bab132732f0813897e476f9a33014

  • SHA512

    5b79f2c7a9c3e4ead5eb03cfd52c96c40fc4822465093571bab1d2028cc20dfdbca04f6ce47277cfe629723f08fc8022f0daacda41e5b1c125e3499c3b5db6ab

  • SSDEEP

    384:VqYOGDuwIKY2f8BCgUF8BROwnA5WIBUJ6aIfgLZmpVk3O8TcdZcDMwScUievXeH0:Vsvw/Y2f8m8Tn9JjmAeQcPNwSfU7Wm

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Dark

C2

ZGFyazEx*jIz*zQ0YTViNTZkNy5kZG5zLm5ldA!!:1177

Mutex

d30e81b53079ab01f7442a2f86c7357d

Attributes
  • reg_key

    d30e81b53079ab01f7442a2f86c7357d

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 84e19fdbbf684408ba2eeb96d01f1219_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections