General
-
Target
JaffaCakes118_6201722e22a88287be8e36c3c637d500
-
Size
23KB
-
MD5
6201722e22a88287be8e36c3c637d500
-
SHA1
905b03e9124e7dbcdb575d7b9788a9bd3ac7faf1
-
SHA256
4565806c4686615af9d8069363e6bac6c03ade21a6425ead122598839cddecb6
-
SHA512
2eed1c4a4d105058aa5dee81a05f5287ca9a8eab6116d245af7af90d1e1456114fca1fae29c04e48f3fedb1f7f10cb0e892800efa1d5c37f1bf3eae8da005f05
-
SSDEEP
384:GsqS+ER6vRKXGYKRWVSujUtX9w6Dglo61Z5DVmRvR6JZlbw8hqIusZzZBw:Rf65K2Yf1jKRpcnuR
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
csgo8
C2
paradox69.no-ip.org:1177
Mutex
b57ac8d6157949bc28d95c301496b04c
Attributes
-
reg_key
b57ac8d6157949bc28d95c301496b04c
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
JaffaCakes118_6201722e22a88287be8e36c3c637d500
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections