Concrete signature match: Trojan - Appears legitimate but performs malicious actions for .NET (Microsoft Intermediate Language) platform, family njRAT
This detection indicates a concrete threat from njRAT, a potent Remote Access Trojan (RAT). njRAT allows attackers to gain full control over the compromised system, enabling data theft, surveillance, and the deployment of additional malicious payloads. The detection utilizes machine learning behavioral analysis, confirming its malicious nature with a low false positive risk.
No specific strings found for this threat
dff65050ec444ad8da5d6ebe757ff45f71c8f3e898382c7e9570031a8c90c26cd0a14b62df8f9e028d68246a36a3823666306f5f648f8342e791ef2f391bc1bf46a9fd7c1f057ddb96e35ae32b81273b7ef1c2abd0fd0b41a414cf6e657a77c9Immediately isolate the affected endpoint from the network. Perform a full system scan using updated antivirus software and remove all identified threats. Investigate for persistence mechanisms, lateral movement, and reset any potentially compromised user credentials. Consider system re-imaging if complete eradication cannot be confirmed.