njrat | 094af2cf14be5e00d331c213b62af22e[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

094af2cf14be5e00d331c213b62af22e.exe
Size

166KB
MD5

094af2cf14be5e00d331c213b62af22e
SHA1

d45a716adb8e74c935531bae90a53cdc358a98b2
SHA256

188123f3bf7cb4200eedfeeda1d4835d8331b22aa013f0eef83d205ef08153e9
SHA512

e2a70d98deac2be3fae9c75205248437a3fe0c636ddfbd9deb7a046f67a254a48bdf4ea8b3274f834089819c1a12aa44a0346f642df1e36bfbdcf9910298ab50
SSDEEP

3072:yEkwM/7nv+/ZUGCqKiTzDnL8l1teENz/BV0bzD3aNpvDZ+lf:yEkRqKiT3LYjR/BmbibZ

Score

10^/10

njrat

Malware Config

Signatures

Njrat family
njrat

Files

094af2cf14be5e00d331c213b62af22e.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ