NPAddConnection
NPAddConnection3
NPCancelConnection
NPCloseEnum
NPEnumResource
NPGetCaps
NPGetConnection
NPGetResourceInformation
ServiceMain
General
-
Target
442cef2e340682f7b675cd2493fd5a73_JaffaCakes118
-
Size
155KB
-
MD5
442cef2e340682f7b675cd2493fd5a73
-
SHA1
49565e8576724a8e27353829ae82d747cf2200ad
-
SHA256
a8be22dd0a17017f6960ca0768ff1a8d2616bc4de89feb12214f9199309a1b89
-
SHA512
dd626dd4a23af8ccecf6cd2e7708e5e5f6384636068aa24f7cb8c4aeef15163cf5100ab2eb8902fa4be704107ebbdbd49fae1d850971cbdd0ffae176affcd3dd
-
SSDEEP
3072:HORtKm6tPvjUosLefKycXI/vthPscTBftp5gnVP3Ro:uRz6t1sLeCDI//PscTBlpSnN3
Score
10/10
Malware Config
Signatures
-
Gh0st RAT payload 1 IoCs
-
Gh0strat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
442cef2e340682f7b675cd2493fd5a73_JaffaCakes118
Headers
Exports
Sections