njrat | 50277a4afccd85eac352308ea1c8150f_JaffaCakes118

Resubmissions

19/08/2024, 10:52

240819-myr68atbmk 10

29/07/2024, 19:05

240729-xrw7pszana 10

29/07/2024, 15:44

240729-s6vj7szcmb 10

Sharing

Copy URL Twitter E-mail

General

Target

50277a4afccd85eac352308ea1c8150f_JaffaCakes118
Size

37KB
MD5

50277a4afccd85eac352308ea1c8150f
SHA1

d4aaef99c3f2e9356a0a34bab4050330e5277b66
SHA256

329c2259d6015d98464322b873b783d18da6ac1a13d7ec40d1de9f143659b1bb
SHA512

5316351c099d02e86e2175ac4c9f61378bfee95e6f100928ca600c370250ad2877d9c0d5ba7508abb0ffad1b768aa375567e8f06a24de7c6bf599874cf0a4b82
SSDEEP

384:P19pkitgZf5W9cTYXyc/yK5M4azfzQnssIkSrAF+rMRTyN/0L+EcoinblneHQM3S:3ijjTYic/yKqcssIvrM+rMRa8NuBBt

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

zdzdzdzd.kro.kr:1

Mutex

fdb6a2048ccd0ff51cb30e142e8611b4

Attributes

reg_key
fdb6a2048ccd0ff51cb30e142e8611b4
splitter
|'|'|

Signatures

Njrat family
njrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50277a4afccd85eac352308ea1c8150f_JaffaCakes118

Files

50277a4afccd85eac352308ea1c8150f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Extracted

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 35KB - Virtual size: 34KB

.rsrc Size: 1024B - Virtual size: 576B

.reloc Size: 512B - Virtual size: 12B

.text
Size: 35KB - Virtual size: 34KB

.rsrc
Size: 1024B - Virtual size: 576B

.reloc
Size: 512B - Virtual size: 12B