NjRat 0[.]7D[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

NjRat 0.7D.rar
Size

8.0MB
MD5

57e07d0c1e79e21c68f8fc184cbf6084
SHA1

6275f5bbde61f0c90825dc5011eddd5099c8318e
SHA256

5070b6b3028b6c2d532f20c841f41df8157a13dad9d848525cb111e715f7b862
SHA512

198afeacbe65988ffce9e0d34276f7bbfcfe3aa9d240a36feb7b310956470146de763da60e4919ca7f3f8a04d484258c8cf1d2cfc379f12b1868ec5ae44c185b
SSDEEP

196608:sdSazTrDWg0eTYiRVVKJc35M1mMgrahw4loO72pqzBtE4:soKvhR2JcJM4M8avOq2ozBtB

Score

3^/10

Malware Config

Signatures

Unsigned PE 8 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NjRat 0.7D/NjRat 0.7D.exe
unpack001/NjRat 0.7D/Plugin/cam.dll
unpack001/NjRat 0.7D/Plugin/ch.dll
unpack001/NjRat 0.7D/Plugin/mic.dll
unpack001/NjRat 0.7D/Plugin/plg.dll
unpack001/NjRat 0.7D/Plugin/pw.dll
unpack001/NjRat 0.7D/Plugin/sc2.dll
unpack001/NjRat 0.7D/WinMM.Net.dll

Files

NjRat 0.7D.rar
.rar
NjRat 0.7D/GeoIP.dat
NjRat 0.7D/Icons/Bokehlicia-Captiva-Atom.ico
NjRat 0.7D/Icons/Bokehlicia-Captiva-Blender.ico
NjRat 0.7D/Icons/Bokehlicia-Captiva-Firewall-config.ico
NjRat 0.7D/Icons/Bokehlicia-Captiva-Nvidia-settings.ico
NjRat 0.7D/Icons/Bokehlicia-Captiva-Utilities-system-monitor.ico
NjRat 0.7D/Icons/Bokehlicia-Captiva-Web-slack.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Access.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Excel.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-InfoPath.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Lync.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Office.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Outlook.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-PowerPoint.ico
NjRat 0.7D/Icons/Carlosjj-Microsoft-Office-2013-Word.ico
NjRat 0.7D/Icons/Ccard3dev-Dynamic-Yosemite-Numbers.ico
NjRat 0.7D/Icons/Chrisbanks2-Cold-Fusion-Hd-Radar.ico
NjRat 0.7D/Icons/Cornmanthe3rd-Plex-Android-App-drawer.ico
NjRat 0.7D/Icons/Cornmanthe3rd-Plex-Android-Baconreader.ico
NjRat 0.7D/Icons/Cornmanthe3rd-Plex-Android-Ebay.ico
NjRat 0.7D/Icons/Graphicloads-Colorful-Long-Shadow-Analytics.ico
NjRat 0.7D/Icons/Graphicloads-Colorful-Long-Shadow-Cloud.ico
NjRat 0.7D/Icons/Graphicloads-Colorful-Long-Shadow-Favourite.ico
NjRat 0.7D/Icons/Graphicloads-Colorful-Long-Shadow-Restaurant.ico
NjRat 0.7D/Icons/Graphicloads-Polygon-Cart-add.ico
NjRat 0.7D/Icons/Graphicloads-Seo-Services-Pay-per-click.ico
NjRat 0.7D/Icons/Harwen-Red-Christmas-Home.ico
NjRat 0.7D/Icons/Harwen-V-Day-Valentines-Day-Honey.ico
NjRat 0.7D/Icons/Harwen-V-Day-Valentines-Day-Present.ico
NjRat 0.7D/Icons/Hopstarter-Sleek-Xp-Basic-Money.ico
NjRat 0.7D/Icons/Hopstarter-Sleek-Xp-Software-Opera.ico
NjRat 0.7D/Icons/Iconka-St-Patricks-Day-Hat-tophat.ico
NjRat 0.7D/Icons/Icons-Land-Weather-Moon-Phase-Full.ico
NjRat 0.7D/Icons/Icons-Land-Weather-Sleet.ico
NjRat 0.7D/Icons/Icons8-Windows-8-Logos-Xbox.ico
NjRat 0.7D/Icons/Icons8-Windows-8-Security-Security-Checked.ico
NjRat 0.7D/Icons/Iconshock-Trendy-Guys-Andrew.ico
NjRat 0.7D/Icons/Indeepop-Crazy-Crown.ico
NjRat 0.7D/Icons/Johanchalibert-Mac-Osx-Yosemite-Safari.ico
NjRat 0.7D/Icons/Kevin-Thompson-Love-And-Breakup-Love-box.ico
NjRat 0.7D/Icons/Paddy-Web20rigami-Firefox.ico
NjRat 0.7D/Icons/Petalart-Business-Cloud-upload.ico
NjRat 0.7D/Icons/Ph03nyx-Super-Mario-Mushroom-Super.ico
NjRat 0.7D/Icons/Photoshopedia-Xedia-Firefox.ico
NjRat 0.7D/Icons/Tooschee-Misc-Present.ico
NjRat 0.7D/Icons/Tooschee-Misc-Sync.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Acrobat-Reader.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Chrome.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Dreamviewer.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Facebook.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Firefox.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-ITunes.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Illustrator.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Photoshop.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Quicktime.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Safari.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Skype.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Thunderbird.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Utorrent.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Vlc.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Winamp.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Windows-Media-Player.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Yahoo.ico
NjRat 0.7D/Icons/Wallpaperfx-3d-Softwarefx-Youtube.ico
NjRat 0.7D/NjRat 0.7D.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\HMJ\Desktop\njRAT v0.7d (SRC)\SRC - NjRAT 0.7D\NjRAT\obj\Debug\NjRat 0.7D.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8.5MB - Virtual size: 8.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/cam.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/ch.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/mic.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/plg.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/pw.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Plugin/sc2.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NjRat 0.7D/Stub/Stub.il
NjRat 0.7D/Stub/Stub.manifest
.xml
NjRat 0.7D/WinMM.Net.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 8.5MB - Virtual size: 8.5MB

.rsrc Size: 35KB - Virtual size: 35KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 97KB - Virtual size: 96KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 43KB - Virtual size: 42KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 74KB - Virtual size: 74KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 62KB - Virtual size: 62KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 270KB - Virtual size: 270KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 12KB - Virtual size: 11KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

File Characteristics

Imports

mscoree

Sections

.text Size: 43KB - Virtual size: 43KB

.sdata Size: 512B - Virtual size: 177B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

.text
Size: 8.5MB - Virtual size: 8.5MB

.rsrc
Size: 35KB - Virtual size: 35KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 97KB - Virtual size: 96KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 43KB - Virtual size: 42KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 74KB - Virtual size: 74KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 62KB - Virtual size: 62KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 270KB - Virtual size: 270KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 43KB - Virtual size: 43KB

.sdata
Size: 512B - Virtual size: 177B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 12B