Overview

overview

10

Static

static

10

d50c46a9bb...18.exe

windows7-x64

10

d50c46a9bb...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d50c46a9bbb0230c8162024f9f085b8d_JaffaCakes118

  • Size

    23KB

  • MD5

    d50c46a9bbb0230c8162024f9f085b8d

  • SHA1

    b06287d34129a314daa6bbd1687d95a6e5b18656

  • SHA256

    9cdb09c7eb50c42b015ea34c49a3d4b621b71832d062d79586e871b96ba02276

  • SHA512

    35860758d9cd6aec92aefd4f286115550cebae8602a82c74b68151d109aa3fd8bf0b7d03c7a0a6f272c0774ded37192cf752f5bc93c7bf49585577743ed1fa92

  • SSDEEP

    384:QweXCQIreJig/8Z7SS1fEBpng6tgL2IBPZVmRvR6JZlbw8hqIusZzZ1l:HLq411eRpcnus

Score
10/10
njnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

NJ

C2

199.241.146.163:19992

Mutex

8a0ed91f41ec793330296809ac9ed622

Attributes
  • reg_key

    8a0ed91f41ec793330296809ac9ed622

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d50c46a9bbb0230c8162024f9f085b8d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections