njrat | ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

ee87daa773...d5.exe

windows7-x64

ee87daa773...d5.exe

windows10-2004-x64

Sharing

General

Target

ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5
Size

1.0MB
Sample

250123-zgv8rssmey
MD5

7bf0fd5fbed1ac64fb352faa6c9b7221
SHA1

998c2f33005767d39ad7257650acf8c390d133c8
SHA256

ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5
SHA512

1c3bdfe1aa66b1c541a475a74182db789292bf828b080f5dd259920f3456af488a8858e63b71f34894ba662de1cdea45acbe6d6364223e414305b1b10cc9ce0e
SSDEEP

24576:0j5DXIm4LDj65TFZ6upoRMLZ5BcpDIr1bTDPq:8DwO76ume5BO+Lq

Score

10^/10

njrat discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5.exe

Resource

win7-20240708-en

njrat discovery trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5.exe

Resource

win10v2004-20241007-en

njrat discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5
- Size
  
  1.0MB
- MD5
  
  7bf0fd5fbed1ac64fb352faa6c9b7221
- SHA1
  
  998c2f33005767d39ad7257650acf8c390d133c8
- SHA256
  
  ee87daa77374fa9d72d00fb0a6f2a79a8c14218674c6e3340f8718d3cb85b4d5
- SHA512
  
  1c3bdfe1aa66b1c541a475a74182db789292bf828b080f5dd259920f3456af488a8858e63b71f34894ba662de1cdea45acbe6d6364223e414305b1b10cc9ce0e
- SSDEEP
  
  24576:0j5DXIm4LDj65TFZ6upoRMLZ5BcpDIr1bTDPq:8DwO76ume5BO+Lq
Score

10^/10

njrat discovery trojan
- Njrat family
  njrat
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratdiscoverytrojan

behavioral2

njratdiscoverytrojan

© 2018-2025

Terms | Privacy