General
-
Target
af6f1405c37ee5a536f0fe7902b7dda3_JaffaCakes118
-
Size
23KB
-
MD5
af6f1405c37ee5a536f0fe7902b7dda3
-
SHA1
23c6c761b928fd5214e316fb62bb26323deadc69
-
SHA256
bccedd6ea702696fafd86396ec66cfe7bd771f3c38719443f850a354d3803fb7
-
SHA512
798e4e072b46a8e9cf22719b02797a9d52077406a85d7bf9cb399a5e01d7e6ac283b2c22daf8aa3461b1f121c7172a2b39b0d110e3b424ccb99baf3fba885337
-
SSDEEP
384:nweXCQIreJig/8Z7SS1fEBpng6tgL2IBPZVmRvR6JZlbw8hqIusZzZ9R:YLq411eRpcnu8
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
agils
C2
127.0.0.1:4444
Mutex
2ce8d311e5bf11c2038b8e0667031067
Attributes
-
reg_key
2ce8d311e5bf11c2038b8e0667031067
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
af6f1405c37ee5a536f0fe7902b7dda3_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections