General
-
Target
ae6791ac3ac21fc3a498b3e520f464ea_JaffaCakes118
-
Size
23KB
-
MD5
ae6791ac3ac21fc3a498b3e520f464ea
-
SHA1
8853f02d869283de001df7f8839f69d76b5929cd
-
SHA256
f586880e7c2d2991e4cc097fd515c0578af818ba1f57ece0dba2c8626161d22d
-
SHA512
1ecbb123ee05e41858965df61adbda35032829298d5d44c72c4f2ac41985756d253aeea66d76114822c32db3cc762c26a222e0b0d9159b7060177acf0948c59c
-
SSDEEP
384:T+n2650N3qZbATcjRGC5Eo9D46BgnqUhay1ZmRvR6JZlbw8hqIusZzZlD4:sm+71d5XRpcnug8
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Nulled
C2
fetrigultu.zapto.org:2255
Mutex
61c43bb1ed3a9279def23cf85783c4fb
Attributes
-
reg_key
61c43bb1ed3a9279def23cf85783c4fb
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
ae6791ac3ac21fc3a498b3e520f464ea_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections