Overview

overview

10

Static

static

10

sample.exe

windows7-x64

10

sample.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6d75cf5e714666428d1900174feae850

  • Size

    13KB

  • MD5

    6d75cf5e714666428d1900174feae850

  • SHA1

    dff4f26409836db2b988ee45ba05e2b5e2312272

  • SHA256

    5741476f485ba80d40981e7795e978522a09a6b20b70026179fee62a2c282f45

  • SHA512

    cb966b5dbe632554155d02b9e41377782b600283630389fd95ea9fb3d7e6b7c811f77cb3d4cfb685d58ca2005f85c6d82fa3bd84a2e44d11b5dbdc872a53fa54

  • SSDEEP

    384:AikjD+7PRK9jtDrdAfnSJUskE3GNrwrjoww0hCiJfKPFefbnvY:ADD++jXAfXsjWYjCkCipKP2bg

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

algerien10404.no-ip.org:1177

Mutex

eaad395b717c9a7b58a9a841e1be3f92

Attributes
  • reg_key

    eaad395b717c9a7b58a9a841e1be3f92

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_6d75cf5e714666428d1900174feae850
    .gz
  • sample
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections