Overview

overview

10

Static

static

10

d1c70330fd...18.exe

windows7-x64

10

d1c70330fd...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d1c70330fd9c0513b777b4eea6218ce4_JaffaCakes118

  • Size

    23KB

  • MD5

    d1c70330fd9c0513b777b4eea6218ce4

  • SHA1

    96784a47cd09c2c7e60974f2dfdf02f4c22e1115

  • SHA256

    fb6231ef2734be693d3bb594b11b6d0644f6d834ed2a72e59e10fc797892c352

  • SHA512

    49d9d1181adc9de9cb45bf79b81a0c667eb5c073c7d8860e213bd74df2ad41197265e143c6ca1e3251815a14c2b4fa7b76dd42e663a459051aa919a0c7d184ac

  • SSDEEP

    384:dFs2aUrue9Bx0RPIxHVSul0M/GrUdw6jgFIqZZj1mRvR6JZlbw8hqIusZzZhsj:dOQ/ok1lzRpcnuea

Score
10/10
host novonjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Host Novo

C2

fidapeste.ddnsfree.com:5552

Mutex

71b1acb46be7ecc1938f530591046434

Attributes
  • reg_key

    71b1acb46be7ecc1938f530591046434

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d1c70330fd9c0513b777b4eea6218ce4_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections