|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-10-28 | |
| Rule Name: | Malicious Win.Trojan.Njrat Variant Outbound Connect Detection | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Njrat, also known as Bladabindi, is used .NET framework written remote control Trojan, through the control side can operate the controlled side of the file, process, service, registry content, can also steal the controlled side of the browser saved password information and other content. This rule detects the communication behavior of Njrat Trojan horses. False positives may exist in this rule. You need to analyze the rule together with other threat logs. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |