njrat | 05efee5c22fd9c1ffedb916768a3efbf_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05efee5c22fd9c1ffedb916768a3efbf_JC.exe
Size

36KB
MD5

05efee5c22fd9c1ffedb916768a3efbf
SHA1

7f14924cd5d2551e45fae5496d17de2659d09f83
SHA256

75e66d1a9b9429065ba0731975b3306d4710f3ce239a1a08d000eb5260053fe0
SHA512

24d13a53a97e3e897b8c0fda68140cbb72a4583c62def3fcd900f1d010e31494ae5fa8146d036a343468ff2a1a67ddb5d3bf54cfd4092f96599415f60f3e052a
SSDEEP

768:4yS6yB4a3hbvOAlsUWURa30PsEhq5lxOBcmZPtjgjC:4yS6Kr5vOAlsUWUY3f5lxOWm7t

Score

10^/10

njrat

Malware Config

Signatures

Njrat family
njrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05efee5c22fd9c1ffedb916768a3efbf_JC.exe

Files

05efee5c22fd9c1ffedb916768a3efbf_JC.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ