njrat | 1f7aed5e0e0e15a7e2a2937a047613803b22e1ee1cec8eb6d28e80f190c4b8c8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

Toad.exe

windows7-x64

8

Toad.exe

windows10-2004-x64

Sharing

General

Target

Toad.exe
Size

79KB
Sample

230711-nn1ahshg9y
MD5

2bd82dba9928ac6facb75f05af7f33c9
SHA1

dc73c02c42d08af58b1105a7ceda8782cd73b5a8
SHA256

1f7aed5e0e0e15a7e2a2937a047613803b22e1ee1cec8eb6d28e80f190c4b8c8
SHA512

33422bef51caed74fd49d89589a3def0ed95c6852099916f62a419b233691c27a45a7a0fc53c3c8a8b6666d28a34ea465f04ca954e9e8dae54c0fdd90aafc3f5
SSDEEP

1536:dKGT5qBSbcBx3gQM8aBBksbEV4coGyN8Uu/Vf0VPoI2:dKGTo0OTWBBnbA4UK8TNcdz

Score

10^/10

njrat evasion trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Toad.exe

Resource

win7-20230703-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Toad.exe

Resource

win10v2004-20230703-en

njrat evasion trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  Toad.exe
- Size
  
  79KB
- MD5
  
  2bd82dba9928ac6facb75f05af7f33c9
- SHA1
  
  dc73c02c42d08af58b1105a7ceda8782cd73b5a8
- SHA256
  
  1f7aed5e0e0e15a7e2a2937a047613803b22e1ee1cec8eb6d28e80f190c4b8c8
- SHA512
  
  33422bef51caed74fd49d89589a3def0ed95c6852099916f62a419b233691c27a45a7a0fc53c3c8a8b6666d28a34ea465f04ca954e9e8dae54c0fdd90aafc3f5
- SSDEEP
  
  1536:dKGT5qBSbcBx3gQM8aBBksbEV4coGyN8Uu/Vf0VPoI2:dKGTo0OTWBBnbA4UK8TNcdz
Score

10^/10

evasion njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

njratevasiontrojan

© 2018-2025

Terms | Privacy