General
-
Target
f256abf7b1bc79d6e87fb9bca01f05b8_JaffaCakes118
-
Size
22KB
-
MD5
f256abf7b1bc79d6e87fb9bca01f05b8
-
SHA1
ad227f08cd6594a8c8dff2ce60f851a5c775256b
-
SHA256
b45f3be47e63026ba7855baff9aa427f1524fa7f90b02e41663c411579f4a257
-
SHA512
c82d7c7e567df087a54120489bef3770721377deeb903c4ff7f0a9c01f663cc5374a6ec5af7200d3dc2b2309635bfe7e77c3b19036e5e268ec9dc1bcd9596f8e
-
SSDEEP
384:SHY324bcgPiJLQrfARGSRUJsbY6ZgvSMBD3t8mRvR6JZlbw8hqIusZzZdC:SQL2s+tRyRpcnuL
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
wiindows.myvnc.com:6340
Mutex
a01803faca50bff46b0de419bf203b09
Attributes
-
reg_key
a01803faca50bff46b0de419bf203b09
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
f256abf7b1bc79d6e87fb9bca01f05b8_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections