Overview

overview

10

Static

static

10

JaffaCakes...50.exe

windows7-x64

10

JaffaCakes...50.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6d929ed6520ba59af4fa3cdd877c0050

  • Size

    29KB

  • MD5

    6d929ed6520ba59af4fa3cdd877c0050

  • SHA1

    b747a53578f3f4e1cb7f20ab64851b3597463323

  • SHA256

    a44376055321cd46cce5a900eb9fab0814c3349f155561cce5af136906837915

  • SHA512

    be543bd29f489ee35767bde564498e0aa6607736698214f9d4497b2de4147cb4a04822bb4ad879c80a7d3da6d7535bff549b295becefcd195391f7d97d73f2c6

  • SSDEEP

    384:pwIpl79TbsiKQ17H5FoQriWmqDGbLTecEGBsbh0w4wlAokw9OhgOL1vYRGOZz+ZG:l7tsiKojBr8q63TeWBKh0p29SgRYG

Score
10/10
hacked aissousnjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

Hacked aissous

C2

baba19.no-ip.biz:1177

Mutex

46d93431630fc8e404fed7204e708738

Attributes
  • reg_key

    46d93431630fc8e404fed7204e708738

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_6d929ed6520ba59af4fa3cdd877c0050
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections