Overview

overview

10

Static

static

10

sample.exe

windows7-x64

10

sample.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6092832add7ccc38d961a5c4ef52c650

  • Size

    14KB

  • MD5

    6092832add7ccc38d961a5c4ef52c650

  • SHA1

    d893601b197b6bd758cbeb690926e91609a9abe4

  • SHA256

    a2b3a50c599366afe2dad57ab644526a097bec4006c1c5638acfe4ce8f65a072

  • SHA512

    d6a30b35fc963a713a3f3893560dba7b165f35fe0e6cda9099db21e9890c6be67824974cbfb0226746334f45ffc226b0ad431f2bb2d6cdaa1eac8cc30ffc55eb

  • SSDEEP

    192:K2xz2xgVzxOdMAi3TYbnaxTZiEfqZpzdLk0yopEat/cswnRoKV1scljNRSdjCndx:A4AijLT5qPzdgoT/6nRoKV13N3O0

Score
10/10
googlenjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Google

C2

zeko20100.no-ip.biz:1177

Mutex

48a6df58cd0d566695640a0527388455

Attributes
  • reg_key

    48a6df58cd0d566695640a0527388455

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_6092832add7ccc38d961a5c4ef52c650
    .gz
  • sample
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections