General
-
Target
5fc3ea7c2a6935a68bffea1dcc68c587_JaffaCakes118
-
Size
23KB
-
MD5
5fc3ea7c2a6935a68bffea1dcc68c587
-
SHA1
bfbb3af34acab2d593351035da999705a79c2f08
-
SHA256
ec466f14ecda40b49ad0333bb2bfbe8dbc0863e01f4af37fae0cf72cd7eb086d
-
SHA512
9f80331534e6e62fe1b7748d7aab289767c88e51e8bc659cb30a4dbbca623e1588dec5c6cbdb86b4c1fa1d263691ac7630ef8a7252ade1fa5784df5068af60e5
-
SSDEEP
384:jz2aUrue9BxVQR+eR31yuEecebUtw6jgF42JJzlmRvR6JZlbw8hqIusZzZBL:rQ/V0X1E9RpcnuS
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Hallaj PRO Rat [Fixed]
Botnet
ههه
C2
playwithme.onthewifi.com:1
Mutex
0ebfc821f3becd37f0256ba2fa5beb91
Attributes
-
reg_key
0ebfc821f3becd37f0256ba2fa5beb91
-
splitter
boolLove
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
5fc3ea7c2a6935a68bffea1dcc68c587_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections