Overview

overview

10

Static

static

10

bcddcf125e...18.exe

windows7-x64

10

bcddcf125e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    bcddcf125ebc1dd97a393b1b02f43938_JaffaCakes118

  • Size

    23KB

  • MD5

    bcddcf125ebc1dd97a393b1b02f43938

  • SHA1

    217c4fc21b58d5868156bb4ac69ccfca22224427

  • SHA256

    ee593ed1776186c79f403e361819a3c700f03650e31393b7801afa9279f86f4c

  • SHA512

    252206b87d3ce7b347a801cdf91e0100dd329d44a638a99406b9a1b98b81b78a01f1d7b09269c414c676dac1dbef5aedc4ded328448afb09d5fc592fbbf3b44c

  • SSDEEP

    384:Zbo8wgee8pVUHCjkd9tdlt8Aa07EaZP4tjcSVSzvxD:RwguVUHz1Ewn

Score
10/10
mondaynjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Monday

C2

185.84.181.89:8280

Mutex

9f53e3d1d8f1ed7f25c1ca7097e17bb7

Attributes
  • reg_key

    9f53e3d1d8f1ed7f25c1ca7097e17bb7

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bcddcf125ebc1dd97a393b1b02f43938_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections