Overview

overview

10

Static

static

10

f497ff0828...18.exe

windows7-x64

10

f497ff0828...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f497ff08280a9f540baaa4866addc7ec_JaffaCakes118

  • Size

    23KB

  • MD5

    f497ff08280a9f540baaa4866addc7ec

  • SHA1

    3922255be0ee4e809ac0bd8210dc1ad08116d00a

  • SHA256

    f30fa5c016d193a853c0e8e8b7bb783599e4d3b02d2c0926ac06775dbbfe2aa4

  • SHA512

    ce4e605bd8946fd5593549da45a2f0fa9c0fd9ce3beee8556a057132779d84eab9bcfde28d6c47ecb0bb10824f46094de60d9bec1b8923cf2b36946ed47062c7

  • SSDEEP

    384:yMqYmCsg/yJrQ7hucGSl7UJx4g6JgfCcosjdomRvR6JZlbw8hqIusZzZpI:yErG0Btl7cRpcnud

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

127.0.0.1:5552

Mutex

0932343ebc836c39c857a65dc20ea0fb

Attributes
  • reg_key

    0932343ebc836c39c857a65dc20ea0fb

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f497ff08280a9f540baaa4866addc7ec_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections