warzonerat | 6160f8f9162640d744f4f2bd5286134b22ed225690250fdda89bbb2384dd1be3 | Triage

Submit
Reports

Overview

overview

Static

static

0567fc59_e...ed.exe

windows7_x64

0567fc59_e...ed.exe

windows10_x64

Sharing

General

Target

0567fc59_extracted
Size

108KB
Sample

210216-5zycf1x33a
MD5

95a9484a34ab54c2f10b1285377a1354
SHA1

e3c9433f40c97a6f8cd40f0fa19db0bf9a7133f3
SHA256

6160f8f9162640d744f4f2bd5286134b22ed225690250fdda89bbb2384dd1be3
SHA512

be7fc117ecf683cc314b1680a72b77700bf37faf3351e8ecba50a3035fd1bd28205b745d76cf2ae777ec43e61912296097d806c2ab0543576aa3965a7d3ab96a

Score

10^/10

warzonerat infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

0567fc59_extracted.exe

Resource

win7v20201028

warzonerat infostealer rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0567fc59_extracted.exe

Resource

win10v20201028

warzonerat infostealer rat

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

warzonerat

C2

137.117.59.51:5200

Targets

- Target
  
  0567fc59_extracted
- Size
  
  108KB
- MD5
  
  95a9484a34ab54c2f10b1285377a1354
- SHA1
  
  e3c9433f40c97a6f8cd40f0fa19db0bf9a7133f3
- SHA256
  
  6160f8f9162640d744f4f2bd5286134b22ed225690250fdda89bbb2384dd1be3
- SHA512
  
  be7fc117ecf683cc314b1680a72b77700bf37faf3351e8ecba50a3035fd1bd28205b745d76cf2ae777ec43e61912296097d806c2ab0543576aa3965a7d3ab96a
Score

10^/10

warzonerat infostealer rat
- WarzoneRat, AveMaria
  WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
  rat infostealer warzonerat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

warzoneratinfostealerrat

behavioral2

warzoneratinfostealerrat

© 2018-2024

Terms | Privacy