General
-
Target
8c538d2c01484025be21620f7b96687d_JaffaCakes118
-
Size
70KB
-
MD5
8c538d2c01484025be21620f7b96687d
-
SHA1
a8b19bb952d548c47efe53dcdf5d26e7609d9867
-
SHA256
35fdd82d73bb948055ab68e46a36b59437cd0d2a26806eb9b4bd9d54c9dd1a8f
-
SHA512
c3970efe4c17e30f507f65cfe31d709664568c405ab9746284c9459ded1ed0a766a6fcf996d8b8fa54e4d989890ca627ed7a728a602c87111ccbe8b47cfa4716
-
SSDEEP
768:Ey9wHJKDuW3xTdm/BeQcPNwSfU/umc90:TqKqW9dmsb2SNq
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Dark
C2
ZGFyazEx*jIz*zQ0YTViNTZkNy5kZG5zLm5ldA!!:1177
Mutex
fe0aa9615702d46489f09a1b89b84ce7
Attributes
-
reg_key
fe0aa9615702d46489f09a1b89b84ce7
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
8c538d2c01484025be21620f7b96687d_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections