Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    52df79aee51712d356dbf6f51bd814d4_JaffaCakes118

  • Size

    23KB

  • MD5

    52df79aee51712d356dbf6f51bd814d4

  • SHA1

    29bdf3ae44321005fb6027cf5d299100bbbb57ef

  • SHA256

    69bc3e840c7aeb2c0eaa156a23c7717fb2352c7a4e1a28deedfbc25b79b27b82

  • SHA512

    5aff3e293dd7851243c1a92a6103e76810514c750a1b58c06669b7033133e81490c653fb2e652a0ac8d5dcfe201d6744750e531b2fdcb405f02aa73df2c2db9c

  • SSDEEP

    384:J3gexUw/L+JrgUon5b9uSDMwT9Pfg6NgrWoBYi55mRvR6JZlbw8hqIusZzZ8qbVz:FIAKG91DP1hrRpcnuQ

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Diethylzink

C2

81.233.44.103:4789

Mutex

ae8e50a35dd196e4c2e7cbed756c7fc9

Attributes
  • reg_key

    ae8e50a35dd196e4c2e7cbed756c7fc9

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 52df79aee51712d356dbf6f51bd814d4_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections