General
-
Target
b366c6a8b68287a455b0819758683397_JaffaCakes118
-
Size
31KB
-
MD5
b366c6a8b68287a455b0819758683397
-
SHA1
3815b53b45c75180c25fbd9697214fa730b060a5
-
SHA256
fec0654680df7122918ca4cdfa9639b4dce731f7105ace33fef9e6ce1106fde3
-
SHA512
6d43e3d19b3572ee0d64b22d23bc0a6cbf2d965e66b6a8997f10fcb55ea88e86ac72dcb4a019714be1136f196bf2e91cee7e49d62da4a293ddf923ebebfd2770
-
SSDEEP
768:EXJEpBZhjzOzx5+R4s/Hu56HdAbiTinvaTQmIDUu0tit2j:LD6uukAbiT6oQVkZj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
monesy
C2
134.249.177.58:1604
Mutex
fba1bfeb960540d314de89060d2abe4b
Attributes
-
reg_key
fba1bfeb960540d314de89060d2abe4b
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b366c6a8b68287a455b0819758683397_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections