warzonerat | 7d3b55984bde0443b7d8c72d6165a5ff4fee1723adcafb75e986e6dfb929eedd | Triage

Submit
Reports

Overview

overview

Static

static

dump.exe

windows7_x64

dump.exe

windows10_x64

Sharing

General

Target

dump.rar
Size

51KB
Sample

210407-6c478belns
MD5

ba5ff7e4cb7493760e82f2e345659405
SHA1

141078dc883672346f17e973ff67645cce3d28bf
SHA256

7d3b55984bde0443b7d8c72d6165a5ff4fee1723adcafb75e986e6dfb929eedd
SHA512

6affb97c620be2e2c48a51d18a2659bda089cefb53bf84ccdec8bc5e48f0fa38597e99f468a4e6da985d59ccc1ca4f7e47bd669df304623c7c764cbad33565dd

Score

10^/10

warzonerat infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

dump.exe

Resource

win7v20201028

warzonerat infostealer rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

dump.exe

Resource

win10v20201028

warzonerat infostealer rat

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

warzonerat

C2

104.209.133.4:7500

Targets

- Target
  
  dump.exe
- Size
  
  114KB
- MD5
  
  e53572318e09cb51ee1856c75d9f5f60
- SHA1
  
  df555ae36c8d5cef664661c4e3ca6239526e4d49
- SHA256
  
  b895fb3d76297f3b8de4598434f3851bc5a60ef7578798262fabecebf354ffe2
- SHA512
  
  69b28b6a0a2fcdb592b68733fcbd14914db444bde7b5c4829566c95509ea345f8260ddacc5463b86ce6b297a4ef3eae9d1a7e7c0e472eb54d4c1ed2882a671a9
Score

10^/10

warzonerat infostealer rat
- WarzoneRat, AveMaria
  WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
  rat infostealer warzonerat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

warzoneratinfostealerrat

behavioral2

warzoneratinfostealerrat

© 2018-2024

Terms | Privacy