General
-
Target
dc30bf9e8cb09779d323ee38d22b1899_JaffaCakes118
-
Size
37KB
-
MD5
dc30bf9e8cb09779d323ee38d22b1899
-
SHA1
f71fcca1a7261ab6976d584b9cac2bcacef78634
-
SHA256
e981ef67974d92e71149c2d4a15deae7459df117b7619c7ea4d9b581da0b42d0
-
SHA512
c3df01f37a4e82c528a8b7ecf9cc20796af92a18b2cd8c684e7700b9df8069fc159c6a37a3717aa71568a4ff2911d5a0866b7eea490cca75e8909121a3210673
-
SSDEEP
768:SJoDQmUbCv/cP1mztvWZVrM+rMRa8Nu8tt:S6DAbW0NOtOZO+gRJNr
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
192.168.0.14:5552
Mutex
1f944304fc89b1ac93b5268ff3ea2fff
Attributes
-
reg_key
1f944304fc89b1ac93b5268ff3ea2fff
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
dc30bf9e8cb09779d323ee38d22b1899_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections