Gridinsoft Logo

Electron Executor.exe Trojan NjRat Analysis

Trojan NjRat
Updated on 2024-03-01 (8 months ago)
Checked by Online Virus Scanner
Online Virus Checker v.1.0.168.174
DB Version: 2024-03-01 19:00:18

Trojan.Win32.NjRat.tr

NjRat, also known as Bladabindi, is a type of remote access Trojan (RAT) that allows cybercriminals to gain unauthorized access and control over infected computers. It was made by a hacking organization from different countries called M38dHhM and was often used against targets in the Middle East.

File Electron Executor.exe
Checked 2024-03-01 17:11:02
MD5 c6f7a127db974121111ad7b3a185f044
SHA1 7ef7cd905a3d74f179a7d63b7acea9a085ff4c74
SHA256 b6f177cdd38d20ad341656b85076bc4015369bd9c97753665c014ebc1e5fd4c8
SHA512 a78287493573f9eff0250aa52e2af6a08af4dc88b7a3d2657ed3b67d044fd64d3b4ccf196c6f421af15e48de6d728d101fb0e79ed1ce970ae47451e9bae5cb32
Imphash 319b1edcc4538be377f43066c635ffef
File Size 12745535 bytes

Trojan.Win32.NjRat.tr Removal

Trojan.Win32.NjRat.tr Removal

Gridinsoft has the capability to identify and eliminate Trojan.Win32.NjRat.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

Portable Executable Info

e8722c548890318e4b9e2a5ec1dc3aa5
6779bf959ed497a7f621ba3ddbad0454
00b28e8e86868600
Image Base: 0x00400000
Entry Point: 0x00416f40
Compilation: 2023-10-03 07:51:24
Checksum: 0x00000000 (Actual: 0x00c2caa4)
OS Version: 5.1
PDB Path: D:\Projects\WinRAR\sfx\build\sfxzip32\Release\sfxzip.pdb
PEiD: PE32 executable (GUI) Intel 80386, for MS Windows
Sign: The PE file does not contain a certificate table.
Sections: 6
Imports: KERNEL32, OLEAUT32, gdiplus,
Exports: 0
Resources: 28

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00001000 0x00028f0c 0x00029000 caca2b2b58a83dbaf15f3f1c6108b427 6.69
.rdata 0x0002a000 0x0000a73e 0x0000a800 82c4c666f29d1a9037c062cec3ffdc43 5.25
.data 0x00035000 0x00035cb8 0x00001000 e38db51a737a34e70ff98ca4cc764645 4.16
.didat 0x0006b000 0x00000178 0x00000200 36bd41b5d4d3e4514d19a139e6f8cb8f 3.22
.rsrc 0x0006c000 0x0000fc04 0x0000fe00 283b29b1e9c4aecdebd816a593d3c0a0 5.05
.reloc 0x0007c000 0x00002a70 0x00002c00 ab9c4a66270333af806665da0a975287 6.66

Leave a comment *

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware