General
-
Target
96514890c3bb4917c105570ba86f9282_JaffaCakes118
-
Size
37KB
-
MD5
96514890c3bb4917c105570ba86f9282
-
SHA1
527dd6bbf8349dca6e5d40bc285a52d980331c4f
-
SHA256
16fc9bd6ad38586f40cc58b87b10676a82a446577b134eee59bfcc4f1c129fde
-
SHA512
816fdfc9939bffd6ccaa1a2d43e7d0c33acd43bad1742ebf3b52bc23f676a75bc820752977fa5b34cc2851148622897658a8ba6cd8e793dda2d2758efbfa64c2
-
SSDEEP
768:keEf5DUi8SYj/DiVS1rM+rMRa8NuEKvt:kzf5IKWDi0u+gRJNFK
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
pingboost.by delator
C2
192.168.1.70:5552
Mutex
d370523cb368166babba62a4e69b12cb
Attributes
-
reg_key
d370523cb368166babba62a4e69b12cb
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
96514890c3bb4917c105570ba86f9282_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections