General
-
Target
ea722b61e3266bcf21c0edd6321e1d80_JaffaCakes118
-
Size
23KB
-
MD5
ea722b61e3266bcf21c0edd6321e1d80
-
SHA1
b021bfbfd8c971b918a8976db9c22e62d9e4fa83
-
SHA256
cfe0943ea56ef9d41e6d75871458662c57d55020f3dcf7999fbf888b7dfc08ef
-
SHA512
e085c454f424957e29abe521ef631e66dc9d839fd980c203131e042cfb5573d28aee183e728cd3a874ce73416fd4eb397655ca1599bd599d7cc166ee393b13a0
-
SSDEEP
384:Vr1MKFYuEEhERvoBG16Xuy0MHNw6Tg1Y+75JTFmRvR6JZlbw8hqIusZzZoEI:Vr+W4V6+yDRpcnu7d
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
zerip.ddns.net:1177
Mutex
24c81bd0d2631bb6cbe3f3973e42798d
Attributes
-
reg_key
24c81bd0d2631bb6cbe3f3973e42798d
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
ea722b61e3266bcf21c0edd6321e1d80_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections