njRAT 0[.]7d - Fixed Stealer[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

njRAT 0.7d - Fixed Stealer.rar
Size

2.9MB
MD5

4dd9c88ac1bc787d050b14b9b306e500
SHA1

9a528000c08b397a50fcbb74ce657d8ec1ebdab4
SHA256

8a36206d2ce4d23d09372caea6e2fc962a63a1b331f69df2947a57a874c962e0
SHA512

27181c31ac5ccafa69beea667262e537f55af981c3a08573cfd02de85f6505bf2a4fb3e28ead3298a660ff3251cf86598a58d6d654dfd86e778abc9d7ed20b80
SSDEEP

49152:+4BEnpicGP3nrk9Vv3CPgZfZqLGSeTSNzYWtgfbMgjvAAT6hGDokKd3wJ2dCKKPz:hApickbkDK2hk7BuguGw0CJ0diBwYiCx

Score

N/A

Malware Config

Signatures

Files

njRAT 0.7d - Fixed Stealer.rar
.rar
njRAT 0.7d - Fixed Stealer/GeoIP.dat
njRAT 0.7d - Fixed Stealer/Plugin/mic.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/Stub.manifest
.xml
njRAT 0.7d - Fixed Stealer/njRAT v0..7d.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/nj_users/BABKA_Jaroslava_4A0C44D2/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/BORI-PC_Bori_B00810C4/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/DAVID_David1_FEA5D8E3/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/DESKTOP-1FHTOTI_Dominik_E87C1FBE/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/DESKTOP-7TJ0HVF_Miskox_32F41847/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/DESKTOP-DCMA4T9_Majinka_10DFC187/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/DESKTOP-STOEMK1_Zdenda_4EC93C14/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/nj_users/ER-PC_er_74E2325D/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/IVITT0XX_Samuel_90C8E325/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/JT01_JT_48E28168/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/LAPTOP-FDAT9SP2_okay_9627FB93/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/nj_users/LEO-PC_Leo_2AF82D57/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/MAYLANDO-PC_Maylando_C42C04B5/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/MICHAL-PC_Michal_181DEAB6/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/MICHAL-PC_Michal_28196D3C/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/PAJA-PC_Paja_96D2DD64/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/PATO-PC_Pato_1C776F62/Downloads/Výpoved.docx
.docx office2007
njRAT 0.7d - Fixed Stealer/nj_users/PC-MICHAL_Michal_DA2FE1B1/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/PETR-PC_Petr_3CE5B70A/Downloads/Steam Guard.docx
.docx office2007
njRAT 0.7d - Fixed Stealer/nj_users/PRAHA-ĐźĐš_Praha_43A0811/PASS.txt
njRAT 0.7d - Fixed Stealer/nj_users/TOM-PC_Tom_3660C8FD/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/ssleay32/GeoIP.dat
njRAT 0.7d - Fixed Stealer/ssleay32/Ionic.Zip.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 478KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/ssleay32/LICENCE.dat
.zip
njRAT 0.7d - Fixed Stealer/ssleay32/Launcher.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/ssleay32/Plugin/mic.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/ssleay32/Stub.manifest
.xml
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/BABKA_Jaroslava_4A0C44D2/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/BORI-PC_Bori_B00810C4/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DAVID_David1_FEA5D8E3/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-1FHTOTI_Dominik_E87C1FBE/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-7TJ0HVF_Miskox_32F41847/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-DCMA4T9_Majinka_10DFC187/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-RJHM474_Gregor_42896999/Downloads/szybkawp.py
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-RJHM474_Gregor_42896999/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/DESKTOP-STOEMK1_Zdenda_4EC93C14/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/ER-PC_er_74E2325D/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/IVITT0XX_Samuel_90C8E325/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/JT01_JT_48E28168/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/LAPTOP-FDAT9SP2_okay_9627FB93/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/LEO-PC_Leo_2AF82D57/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/MAYLANDO-PC_Maylando_C42C04B5/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/MICHAL-PC_Michal_181DEAB6/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/MICHAL-PC_Michal_28196D3C/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/PAJA-PC_Paja_96D2DD64/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/PATO-PC_Pato_1C776F62/Downloads/Výpoved.docx
.docx office2007
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/PC-MICHAL_Michal_DA2FE1B1/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/PETR-PC_Petr_3CE5B70A/Downloads/Steam Guard.docx
.docx office2007
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/PRAHA-ĐźĐš_Praha_43A0811/PASS.txt
njRAT 0.7d - Fixed Stealer/ssleay32/nj_users/TOM-PC_Tom_3660C8FD/Keylog.rtf
.rtf
njRAT 0.7d - Fixed Stealer/ssleay32/njr.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
njRAT 0.7d - Fixed Stealer/ssleay32/stub.il
.ps1
njRAT 0.7d - Fixed Stealer/stub.il
.ps1

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 48KB - Virtual size: 48KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 478KB - Virtual size: 477KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 50KB - Virtual size: 50KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 48KB - Virtual size: 48KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.reloc Size: 512B - Virtual size: 12B

.rsrc Size: 33KB - Virtual size: 32KB

.text
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.5MB - Virtual size: 1.5MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 478KB - Virtual size: 477KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.6MB - Virtual size: 1.6MB

.reloc
Size: 512B - Virtual size: 12B

.rsrc
Size: 33KB - Virtual size: 32KB