General
-
Target
2ad0d77ad5bf9540422dd971cdeaee86_JaffaCakes118
-
Size
204KB
-
MD5
2ad0d77ad5bf9540422dd971cdeaee86
-
SHA1
a05a819d4bb999d2cf249572b96f875a0d9a7acd
-
SHA256
3db37d4ed3436edf68b8ab3d47453e0dba9a76e1105260580447e1e1b410cd20
-
SHA512
98329666bb5e474230ff20f35151564f25bb807b895b3bf608eb025069d6d04c0cb0e1ff971521bf1f70774ec2dc69d6482a2666fe056d2554f2542188d0347d
-
SSDEEP
3072:PeYwIe0Fk7s4YJicOZq9QpGO06qC7YuHC0C:PeTs4YJitw90GB6qC7M0C
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
TVOJ BATYA
C2
188.226.49.54:1414
Mutex
b8209f733f070b3844dda675e1452550
Attributes
-
reg_key
b8209f733f070b3844dda675e1452550
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2ad0d77ad5bf9540422dd971cdeaee86_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections