njrat | TEST BANK ACCOUNT[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

TEST BANK ACCOUNT.exe

windows7-x64

TEST BANK ACCOUNT.exe

windows10-2004-x64

3

Sharing

Static task

static1

l indian scammer ezezezez njrat

1 signatures

Behavioral task

behavioral1

Sample

TEST BANK ACCOUNT.exe

Resource

win7-20230220-en

njrat l indian scammer ezezezez trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

TEST BANK ACCOUNT.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

TEST BANK ACCOUNT.exe
Size

37KB
MD5

d292e38ae9448135ff757d8023d2c10b
SHA1

a5590dcdcf4bab86ac15234bf83957c7d828bcfb
SHA256

5453d518a08515c4f08ebb09601a925f6164e22db494ce1785e70f00d61f8589
SHA512

f85b3b303a9ecb84106d193d4650c8fedda92bde368fb96dae860b7be7b6b4509e1acac1a59b67d6210363c1b2a91fd0b21f97496e24bfdbbd93dc5c7696b93a
SSDEEP

384:8wS6yikt2zIuMXY1uyZD71qwkfFoseyHDrAF+rMRTyN/0L+EcoinblneHQM3epzP:zoY1lN7Qwk21yjrM+rMRa8NuTrt

Score

10^/10

l indian scammer ezezezez njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

L indian scammer ezezezez

C2

chapter-julia.at.ply.gg:17779

Mutex

763f08aadc5f1dde3c553edc3d069fec

Attributes

reg_key
763f08aadc5f1dde3c553edc3d069fec
splitter
|'|'|

Signatures

Njrat family
njrat

Files

TEST BANK ACCOUNT.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy