Overview

overview

10

Static

static

10

JaffaCakes...31.exe

windows7-x64

10

JaffaCakes...31.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_ee8527997d5a077ad580995943e2de31

  • Size

    334KB

  • MD5

    ee8527997d5a077ad580995943e2de31

  • SHA1

    b04eec0f226bebae4611c16841d1bf0601f0e69b

  • SHA256

    df3c3fee851b96afe713bb0055b9986539fbe42d1bfce6e0cce0cb2a5af2f1ff

  • SHA512

    bea5e1189d46e7f21eb440c2f25720469b1744f6574598c6b08ac90a2dfa32cf3ce9fd543fca4074aaab0f89e9a237aca164cfdd9bb79fcfb1f886307931f48a

  • SSDEEP

    6144:JXcJujfpuAJUjYj4+bldA4qAgN0T78k/QJM7Ep7UrEw:r88XwaeJcKUrR

Score
10/10
ratdefaultasyncrat

Malware Config

Extracted

Family

asyncrat

Version

NonEuclidRat Black

Botnet

Default

Mutex

MmmMuuuUTTTIxx

Attributes
  • delay

    1

  • install

    false

  • install_file

    hostcontrol.exe

  • install_folder

    appdata

aes.plain

Signatures

  • Async RAT payload 1 IoCs
    rat
  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_ee8527997d5a077ad580995943e2de31
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections