General
-
Target
db08b20b26289b912b5fb399f54b3b7e_JaffaCakes118
-
Size
37KB
-
MD5
db08b20b26289b912b5fb399f54b3b7e
-
SHA1
e73a0226846bbfdcb64a2507f2773317b1f26511
-
SHA256
daca1b92fb75a349e2973f63eaefab71d19ba35a3d655f607402a538d31dace6
-
SHA512
25c4e59559e2c1e48309174643bef2535fa040e683272a8be7c9a95accd7c36d5de6def8025e586866233b85e1bcbea570eaf4f3c778cb43c8ea0e9261a9265d
-
SSDEEP
384:fAevEiTblvpWNcZ0y8fJCtTHVGLkC+xArAF+rMRTyN/0L+EcoinblneHQM3epzXo:4eBTZ38fJCtT0d+irM+rMRa8Nujit
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
vip009988.ddns.net:2222
Mutex
9d90632f968d93564077cfcbab6372c6
Attributes
-
reg_key
9d90632f968d93564077cfcbab6372c6
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
db08b20b26289b912b5fb399f54b3b7e_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections