S0385 - njRAT

Threat Intelligence Feed

Feed ID: nkIzt4gBgHqbhTfSop4M

njRAT is a remote access tool (RAT) that was first observed in 2012. It has been used by threat actors in the Middle East


Select the way you want to use this feed:


Download Feed

Download this Threat Intelligence feed directly or through code:

  • Several different formats (Simple IoC lists or full context JSON)
  • Code snippets available on how to download it in different programming languages.


    • Integrate Feed

    Automate your Security Operations by integrating this feed data real time into your Security Stack:

  • Onboard Maltiverse Feeds on security devices (SIEM, SOAR, Firewalls, etc)
  • Create your own feed and deploy new IoCs insantly across you security devices.


    • Feed composition

    Feed composition by type

    IP Address Hostname URL Sample Total

    Feed ingestion over time (now-1M)

    Feed composition by type

    results found for: “blacklist.external_references.external_id:"S0385" AND classification:malicious”