General
-
Target
d69ffc9dc1314500b4c5a972ad692de0_JaffaCakes118
-
Size
31KB
-
MD5
d69ffc9dc1314500b4c5a972ad692de0
-
SHA1
a5ad2f3f16a841cd0a929951ad16dc2dd8425e6f
-
SHA256
31f405ad9283f04f699f4d532d158c52fce4803aa587cec883f6897440984f49
-
SHA512
d55e4c51cd91e51bdd989cf6277f25b02a56af9a7b72ce5679e854c6169a7f60bd8ba80ac47e94bd3f62e2c2e7984bb45dbf95caf0415d111e9fcd3efa7ea86e
-
SSDEEP
768:Eis2ZOVvZVYzxDCPIAT+vCQEpvywHQmIDUu0tit/j:J+6qJQ6DQVkUj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Pisos
C2
192.168.1.12:1064
Mutex
bb5b8c02ad6c89a2102b66c5db85543f
Attributes
-
reg_key
bb5b8c02ad6c89a2102b66c5db85543f
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d69ffc9dc1314500b4c5a972ad692de0_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections