njrat | 793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802 | Triage

Submit
Reports

Overview

overview

Static

static

793d4047f9...02.exe

windows7_x64

793d4047f9...02.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802.exe

Resource

win7-20220414-en

njrat roblox evasion persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802.exe

Resource

win10v2004-20220414-en

njrat roblox evasion persistence trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802
Size

23KB
MD5

11f42d8a2e06a965a4ffc575dfda012f
SHA1

8e372df6a2d2171403349c72d5b4eac100baac06
SHA256

793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802
SHA512

3b9001f44cb2f840f3d22888010a66a0ff2737a36b4574f5af6ab58466bca9ac63ef2820ed0d4ba18de5d7ef204b3ca2e6365f5803f758d1de2cec38f863cb5a
SSDEEP

384:28aSyS9gB3Y1KIay2X8cLZI6XgxsGJVPpmRvR6JZlbw8hqIusZzZRf:5589tXvRpcnue

Score

10^/10

roblox njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Roblox

C2

sallystark.ddns.net:1177

Mutex

4f4dac90c60c5d2b42eb7531f6b1885e

Attributes

reg_key
4f4dac90c60c5d2b42eb7531f6b1885e
splitter
|'|'|

Signatures

Njrat family
njrat

Files

793d4047f9cb06853188abd91e4e889ab897b989abba1e9a040b0a767eb90802
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy