General
-
Target
a88fff2150b85ca290a4b73d173f0bcf_JaffaCakes118
-
Size
36KB
-
MD5
a88fff2150b85ca290a4b73d173f0bcf
-
SHA1
dec80a3df75a75f44cf48ac8dca1bdacd0ce6f20
-
SHA256
da97458433211f9901d8028600bdded7c5a01f1eecebacc488cd02eaa093b5d8
-
SHA512
8267194d75bc13550f1258fafdcac753c89f084c5c58c584fa790fb700f9a7b3b89587ba6def3711e93f6525cf70b25115ed8ba18be0bda2f4f7308b3910869d
-
SSDEEP
384:i8RZLj6icdri5Z7JAyk/O4GfZ5Ze6yN0rAF+rMRTyN/0L+EcoinblneHQM3epzX9:dRLHJ7k/O4GbZ7yirM+rMRa8Nu26t
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
paragetirmebana.duckdns.org:1604
Mutex
c57b46b57117b69079564f3bfb838971
Attributes
-
reg_key
c57b46b57117b69079564f3bfb838971
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a88fff2150b85ca290a4b73d173f0bcf_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections