Overview

overview

10

Static

static

10

HackedFifa.exe

windows7-x64

10

HackedFifa.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_68d1c0566b41a435b804e257c9738a10

  • Size

    64KB

  • MD5

    68d1c0566b41a435b804e257c9738a10

  • SHA1

    a9bc509add902b3d5a3f4f146b0d74cc2b71263d

  • SHA256

    a4ea9f0ce69ff7164ffc2ddc33f7c00f37c702694e46cb967ca5ef71332d3ec0

  • SHA512

    52deb5626ca0983251194c692f0e62273a5b73472880dd258895bcd6536d1bef7716fb41d30cef4d99c4343b6221ba118ac99fb858aaf682ffd73e4c0341282a

  • SSDEEP

    1536:cjnVwbOp54C3hcsFCmLsuZqA+XutqV7v59xtDetwG6T98fEdLd:cBw6hNLsuZT+XusVzVtySGG982Ld

Score
10/10
fifa_vitimasnjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

Fifa_Vitimas

C2

duduhackernoob.no-ip.org:1177

Mutex

2e3533e8a21782e85bf5271ce8795feb

Attributes
  • reg_key

    2e3533e8a21782e85bf5271ce8795feb

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_68d1c0566b41a435b804e257c9738a10
    .rar
  • HackedFifa.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections