njrat | 9d3464e5add1b15adb7ae7f0045b3071373bb05674c4204fc87b62c3235b4098 | Triage

Submit
Reports

Overview

overview

Static

static

3

newiomatrix.exe

windows11-21h2-x64

Sharing

General

Target

newiomatrix.exe
Size

1.5MB
Sample

250107-z1dg3a1jgn
MD5

b178a5306528a045601b6f8a3052961c
SHA1

e0df3d88db56391bfb525b1f5e67e2589f9f819a
SHA256

9d3464e5add1b15adb7ae7f0045b3071373bb05674c4204fc87b62c3235b4098
SHA512

0d1c78ed74be8521ad04ea8196712e6944aa8f5db60e49e1da475bc8cdc7673f9d8b848a8373099c120c24dba0734908021d71e7340b6d1c8c19984494bb5e6a
SSDEEP

49152:VBn/d2dDeFH/dmi1oSGvZzlO+QaYdQ7Qg0q+SsMo:VBnlmDe3mcT0Qg0qBsM

Score

10^/10

njrat discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

newiomatrix.exe

Resource

win11-20241007-en

njrat discovery trojan

windows11-21h2-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  newiomatrix.exe
- Size
  
  1.5MB
- MD5
  
  b178a5306528a045601b6f8a3052961c
- SHA1
  
  e0df3d88db56391bfb525b1f5e67e2589f9f819a
- SHA256
  
  9d3464e5add1b15adb7ae7f0045b3071373bb05674c4204fc87b62c3235b4098
- SHA512
  
  0d1c78ed74be8521ad04ea8196712e6944aa8f5db60e49e1da475bc8cdc7673f9d8b848a8373099c120c24dba0734908021d71e7340b6d1c8c19984494bb5e6a
- SSDEEP
  
  49152:VBn/d2dDeFH/dmi1oSGvZzlO+QaYdQ7Qg0q+SsMo:VBnlmDe3mcT0Qg0qBsM
Score

10^/10

njrat discovery trojan
- Njrat family
  njrat
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Drops file in Drivers directory
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratdiscoverytrojan

© 2018-2025

Terms | Privacy