njrat | e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312 | Triage

Submit
Reports

Overview

overview

Static

static

e79fa18094...12.exe

windows7-x64

e79fa18094...12.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312.exe

Resource

win7-20221111-en

njrat tneket evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312.exe

Resource

win10v2004-20221111-en

njrat tneket evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312
Size

23KB
MD5

b3d6d0e1f207330384091a103295ebe0
SHA1

16ba914852473f4fa8d649847ecf2ca6cc7557e5
SHA256

e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312
SHA512

8270467572af0ed652d6c1a0799baef2021c60eed6a2c09ed80c67773b701402ea2d677a10466daaef1f574233bc597742a09bc4152402976a2f3dc031c3a516
SSDEEP

384:cfwz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZ0F:c0TbC81NgRpcnuX

Score

10^/10

tneket njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

tneket

C2

127.0.0.1:1994

Mutex

fcdf7de8921df194a4188023df063049

Attributes

reg_key
fcdf7de8921df194a4188023df063049
splitter
|'|'|

Signatures

Njrat family
njrat

Files

e79fa180944bdabb5398775eaec85089abb28815165d92c0992ca1f8e9f6c312
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy