General
-
Target
bdff9e4dea7e307ca84f352ab652764b_JaffaCakes118
-
Size
37KB
-
MD5
bdff9e4dea7e307ca84f352ab652764b
-
SHA1
a753f271bce56265a01aacc95f14a7276abafdb4
-
SHA256
45ae809f27df31f2f17a350d8a32bd6de37a316bff5ef96534684daac80c33c6
-
SHA512
60cffc4c36675e2d175415b0d328d1712741cbe9ccd29c98787156c8e3f6e4fbe32cd937d28f5354f1264cff6d74ee7905674dd0e3f2ce81335a93ad6063ba59
-
SSDEEP
384:PLuhsiDrT95hL5YyUvRD/zOo46A1arAF+rMRTyN/0L+EcoinblneHQM3epzXlNC9:6dv5zUvRDLlAkrM+rMRa8Nu7yt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
Discord
C2
179.43.174.181:5444
Mutex
cf10f6e8bb50276e4449aba20e9490f8
Attributes
-
reg_key
cf10f6e8bb50276e4449aba20e9490f8
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
bdff9e4dea7e307ca84f352ab652764b_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections