General
-
Target
fc7ed11225707bb03a06a6e3b6b06f04_JaffaCakes118
-
Size
31KB
-
MD5
fc7ed11225707bb03a06a6e3b6b06f04
-
SHA1
ecda25ee858992a96c1d01e65ab359ef33da8c9b
-
SHA256
434c3b5ab0a2b53e04e4cdf6df69ab626919e3f5b9cffde95e178fe975d463b4
-
SHA512
02a33c11e26614320a707bc5f8ec89cfad3e23aef596759071ebc7b76702602eb56717f4d3be7711370cc8b749a7be28bdadd7299957b614ecf5ed47d6ab8c82
-
SSDEEP
768:m7h0/b13hdwzxLy3mMzS/LYVvshQmIDUu0ti7Usj:44Z6wYyQQVkaj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Zombie
C2
tmvlflt.p-e.kr:1
Mutex
bd9defde5bca6ae254f0613ef4c03b4a
Attributes
-
reg_key
bd9defde5bca6ae254f0613ef4c03b4a
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
fc7ed11225707bb03a06a6e3b6b06f04_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections