Overview

overview

10

Static

static

10

JaffaCakes...bc.exe

windows7-x64

8

JaffaCakes...bc.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_afa601763f2a7766d2162134d441dda5335cf15c7b0ee75ba8d9759247ca48bc

  • Size

    93KB

  • MD5

    e3246829669fd405f86615b41273ca8e

  • SHA1

    a938850b46ce8c7cef39740a5e60688fe0130334

  • SHA256

    afa601763f2a7766d2162134d441dda5335cf15c7b0ee75ba8d9759247ca48bc

  • SHA512

    498b1c351e87d01a4b7bc016e47d3eddee9d891cf33c32b41dfcc8ed9c88d60050292dfd2b4e0781450c013037f425b63062bfb81a845082344676ef26acb9ca

  • SSDEEP

    1536:GORnEoSnsqS5ut9YMR8SjEwzGi1dD+DOgS:GOtSnsqS5uTYM+7i1dQz

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

message-epic.at.ply.gg:53723
Mutex

e2e3426a158fbbe324e78b544ba71838

Attributes
  • reg_key

    e2e3426a158fbbe324e78b544ba71838

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_afa601763f2a7766d2162134d441dda5335cf15c7b0ee75ba8d9759247ca48bc
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections