General
-
Target
b0d21356a4e31c7bf9d17afbe0607ffa_JaffaCakes118
-
Size
23KB
-
MD5
b0d21356a4e31c7bf9d17afbe0607ffa
-
SHA1
5ba2c5ff8855bafc429220781f39bb2898edb297
-
SHA256
472bdeb5d9ff6ed84988632ce8c1945216d9faac0d2f16bdcbe1bf3e762265b3
-
SHA512
78522e25b402590af75a2f53ab478b1f244595a548c2fc68e6c0fc5a80a6cb9215c6ec16f8929a16c2ba9561c64f4ef2fc2a3f74690f0f3e905b90c687b53622
-
SSDEEP
384:MQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZup:j5yBVd7RpcnuJ
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
lmorpho6881.bounceme.net:5552
Mutex
61703b1c0a2ce7a2b11cce3f2b513119
Attributes
-
reg_key
61703b1c0a2ce7a2b11cce3f2b513119
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b0d21356a4e31c7bf9d17afbe0607ffa_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections