Overview

overview

10

Static

static

10

97b753744f...18.exe

windows7-x64

10

97b753744f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    97b753744f98dfaeb252b45be51d0175_JaffaCakes118

  • Size

    43KB

  • MD5

    97b753744f98dfaeb252b45be51d0175

  • SHA1

    860d5e97c4b5f56cf27d746767c1ffd870eba817

  • SHA256

    f38a18da44181fc1eb7c5a2d8e323491506ad5141cf7e49545712963e0a1a4d9

  • SHA512

    22cec920bac4109c30eee569eed85d68cb60bec8cc16d52780aee24a4e239f9772d2c98a82e689986ab10ddb6dd277c832c71a7d5c75e352bfde8d08dbec10dc

  • SSDEEP

    384:X7Zyq2XN0Vyoy773QkX6IsMpj5uYa9D9O5UE5QzwBlpJNakkjh/TzF7pWnQvgre/:X11AKgl/gkX3pXvQO+FV+L

Score
10/10
victimnjrat

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

victim

C2

1026ef32.ddns.net:5353

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 97b753744f98dfaeb252b45be51d0175_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections