General
-
Target
21a2ffb6f0d2707fbddb33cc13852529cf14e75b5d2348ef3c4b704d250d8535
-
Size
600KB
-
Sample
210301-mzg3mmg3a6
-
MD5
c80febad7d8f2d6b9b4ca8484f810b78
-
SHA1
5ad7bfaf75959cdde650298e579f67c0161f27bb
-
SHA256
21a2ffb6f0d2707fbddb33cc13852529cf14e75b5d2348ef3c4b704d250d8535
-
SHA512
062dfe1cd8fe9eb246319ebeadba666dbc9141315f2b1f9a8e8378b51ba9527b9e31042894e440e75b8777084f579fce1bf3163d30a448a650af0a46d28b29be
Malware Config
Targets
-
-
Target
21a2ffb6f0d2707fbddb33cc13852529cf14e75b5d2348ef3c4b704d250d8535
-
Size
600KB
-
MD5
c80febad7d8f2d6b9b4ca8484f810b78
-
SHA1
5ad7bfaf75959cdde650298e579f67c0161f27bb
-
SHA256
21a2ffb6f0d2707fbddb33cc13852529cf14e75b5d2348ef3c4b704d250d8535
-
SHA512
062dfe1cd8fe9eb246319ebeadba666dbc9141315f2b1f9a8e8378b51ba9527b9e31042894e440e75b8777084f579fce1bf3163d30a448a650af0a46d28b29be
Score10/10-
VenomRAT
VenomRAT is a modified version of QuasarRAT with some added features, such as rootkit and stealer capabilites.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-