njrat | Payload[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Payload.exe
Size

4.1MB
MD5

14d8d2cf7ed4eae31d453db0b816118b
SHA1

3b50d78f8119bfaf79546be1b507be2d6c936edd
SHA256

d73877d433cd24e3a3efcee53a28fb078e7faea4e38b3e3e3ceb8c265bb8361c
SHA512

6416d1d63f2b2a2fd73d278873f850da743ad20172c327e3b0d828cb878a3277c04192daa1d8d298053b31712808ac64886ec2ae51dd4f1853369d86aa734aba
SSDEEP

768:s6a6lOt1Man8E2N6FikUt34okSNrmwFvfu0YMDHPs3L7XJSxI3pmFm:s61cDnCN6FikSJDCwsNMDSXExI3pmFm

Score

10^/10

njrat

Malware Config

Signatures

Njrat family
njrat

Files

Payload.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ