General
-
Target
d92cc798ff7b6c0201f611eb2fc6cfe5_JaffaCakes118
-
Size
23KB
-
MD5
d92cc798ff7b6c0201f611eb2fc6cfe5
-
SHA1
32fc41ab3fb458d28c9f45271d7e671db763b8b5
-
SHA256
416b71ffdd41d451196ca412f9a4ed6baa04ce9d67b74716ddefdb8eae925869
-
SHA512
453b947d6c9c502983cb777e0fd4e07f85d3a37c3d02a939479e71903444c1a3f0f34b97be93fa82dc0aa444e1e9e94c43901e0ee1d02b5c41f9accc3931c00c
-
SSDEEP
384:hwz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZQAE:yTbC81NgRpcnu1
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
dikodiko.ddns.net:7000
Mutex
11b9b072bf286247208a802c3eb234a6
Attributes
-
reg_key
11b9b072bf286247208a802c3eb234a6
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d92cc798ff7b6c0201f611eb2fc6cfe5_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections