Concrete signature match: Trojan - Appears legitimate but performs malicious actions for .NET (Microsoft Intermediate Language) platform, family njRAT
This detection indicates a concrete threat from njRAT, a potent Remote Access Trojan (RAT). njRAT allows attackers to gain full control over the compromised system, enabling data theft, surveillance, and the deployment of additional malicious payloads. The detection utilizes machine learning behavioral analysis, confirming its malicious nature with a low false positive risk.
No specific strings found for this threat
a62ca2b3feebabf5ebd5367e8106d20b89373e009e97fd26df904ea0b6f06708f935592ac13d4f34c75f9d2baaeaa8f181c8930e11889b8f3dfa8dd6413e534bdff65050ec444ad8da5d6ebe757ff45f71c8f3e898382c7e9570031a8c90c26cd0a14b62df8f9e028d68246a36a3823666306f5f648f8342e791ef2f391bc1bf46a9fd7c1f057ddb96e35ae32b81273b7ef1c2abd0fd0b41a414cf6e657a77c9Immediately isolate the affected endpoint from the network. Perform a full system scan using updated antivirus software and remove all identified threats. Investigate for persistence mechanisms, lateral movement, and reset any potentially compromised user credentials. Consider system re-imaging if complete eradication cannot be confirmed.