njrat | 60bd41d44c4e3edd4fb2b7dbff3da52d8a843882c7e02df7046a694d9a5ae815

Sharing

Copy URL Twitter E-mail

General

Target

60bd41d44c4e3edd4fb2b7dbff3da52d8a843882c7e02df7046a694d9a5ae815
Size

1.0MB
MD5

f264a8f9b3a0004a2b405e00e7aea80a
SHA1

70716a2d304384632678fda1b97878aa1ac94f35
SHA256

60bd41d44c4e3edd4fb2b7dbff3da52d8a843882c7e02df7046a694d9a5ae815
SHA512

bdc2c001050960f0a0ad1628ca8d7614ac43b8ea7f10fa15455cfa4f782004f439e422a5a675b1915fcba16e9205175cbc8f995aa02a453cd36e307b0c59514d
SSDEEP

24576:qyUO0pioGfGg94kRpsWsHuN4gX3aCO81NSUxCkViULUedxDRpCDL:q77wGgfRSONN1O81YgC4iiU0hRpCDL

Score

10^/10

njrat

Malware Config

Signatures

Njrat family
njrat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/40ce9c3a8e2c6d52ab0a9d45d5838a62869dafb77764763dbfac3d4a8929b740

Files

60bd41d44c4e3edd4fb2b7dbff3da52d8a843882c7e02df7046a694d9a5ae815
.zip

Password: infected
40ce9c3a8e2c6d52ab0a9d45d5838a62869dafb77764763dbfac3d4a8929b740
.exe windows:4 windows x86 arch:x86

28f2c05054faf8d11a07655705dd239e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoreei

StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly
StrongNameTokenFromAssembly

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

28f2c05054faf8d11a07655705dd239e

Headers

DLL Characteristics

File Characteristics

Imports

mscoreei

Sections

.text Size: 24KB - Virtual size: 24KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 5.5MB - Virtual size: 5.5MB

.text
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 5.5MB - Virtual size: 5.5MB