General
-
Target
a6ca3f1d7de5da6011bffcdc82c11eda_JaffaCakes118
-
Size
23KB
-
MD5
a6ca3f1d7de5da6011bffcdc82c11eda
-
SHA1
1e2c893eb47396ebe6deb16bd63b076ed649be63
-
SHA256
f005798da760ab058f4d234e677ff84ad9e966b0426af6edbc13f9b3a023f934
-
SHA512
b0631d0bc49b42948363d56c7bfe0d0f0b7318833cdad5a1c0a0aab1cf1af197b25d3d9b5354c69701b04ed5c7281f364c662cbad011c077b41112309e645fe5
-
SSDEEP
384:SY324bcgPiJLQrfARGSRUJsbY6ZgvSMBD3t8mRvR6JZlbw8hqIusZzZoD:FL2s+tRyRpcnup
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
141.255.152.41:1177
Mutex
fad9e496c368445f1aaf4ccb8709dd96
Attributes
-
reg_key
fad9e496c368445f1aaf4ccb8709dd96
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a6ca3f1d7de5da6011bffcdc82c11eda_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections