General
-
Target
c29808477b9d716fe993522044a20283_JaffaCakes118
-
Size
52KB
-
MD5
c29808477b9d716fe993522044a20283
-
SHA1
606d1444405e22382ec600e12388be881130ac6f
-
SHA256
0f8e3037756dc322dd21499a2eabf3a6542a0783ed9ccd6094f5d73cd681a66f
-
SHA512
214a4e24673c428ffb5a59499d7bd91d504a1495b3a7fddcd4dcdfda19d92daaaef089d1725efc007d107bd5445d7bd3cfc86594132d0a85d1073967089adbf0
-
SSDEEP
768:F+dTZ38f1CRDcNSNrM+rMRa8NuaetHz31Fx7:FETZsdCRDcc2+gRJNhY97
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
simaiiii1.ddns.net:7777
Mutex
826a16306d545b5e67a3dbe07bcf2f4a
Attributes
-
reg_key
826a16306d545b5e67a3dbe07bcf2f4a
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
c29808477b9d716fe993522044a20283_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections