Overview

overview

10

Static

static

10

sample.exe

windows7-x64

10

sample.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_778d851ee285deb89998b5578988f810

  • Size

    16KB

  • MD5

    778d851ee285deb89998b5578988f810

  • SHA1

    ad6dd4cb0d344a22fc4e88205a9a2d5432c4e7b4

  • SHA256

    d0518ad96b2c42c799f9f0dc50f9043c7881095c5c17c068c44241b808e10988

  • SHA512

    10df7ef0d84fac4e4e5ba39b531afd255af52f4aa8570a3aa1fa643386c0cbcf77934c8bf6f71bacb9314a24a2b285d07946ddf35319a60a7778b529edaf0221

  • SSDEEP

    384:vxg+tkmi2R1PcDwj75UcKYsbm6k7PVFw2K4noN91JJ4jE1:y0kkR1UDq7xKYomH7tFw2K44AE1

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

blackmagix.no-ip.org:1177

Mutex

a49931bd13ad32f9534c94e1f51783c7

Attributes
  • reg_key

    a49931bd13ad32f9534c94e1f51783c7

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_778d851ee285deb89998b5578988f810
    .gz
  • sample
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections