warzonerat | 864b531c5f5a397b3fd2a8aa91c83f956d93300db9c986bfa7ae4744d7cb732f | Triage

Submit
Reports

Overview

overview

Static

static

Documento ...io.exe

windows7_x64

Documento ...io.exe

windows10_x64

Sharing

General

Target

Documento de envio.exe
Size

982KB
Sample

210722-gz3nclsnt2
MD5

0fcc784f9400be0d78104a0043ee4479
SHA1

65cac3bdb71487d6e14480ade6397347289e047b
SHA256

864b531c5f5a397b3fd2a8aa91c83f956d93300db9c986bfa7ae4744d7cb732f
SHA512

b32a5475f7ec76dc88201383616e712d867757de39525ac5cda21536c5144e82fb3fe4b08f5024678823e8e1ca7bd8ffea0cbbeab8845636adb6e11e1fd1c975

Score

10^/10

warzonerat infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

Documento de envio.exe

Resource

win7v20210408

warzonerat infostealer rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Documento de envio.exe

Resource

win10v20210410

warzonerat infostealer rat

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

warzonerat

C2

juner234.ddns.net:6397

Targets

- Target
  
  Documento de envio.exe
- Size
  
  982KB
- MD5
  
  0fcc784f9400be0d78104a0043ee4479
- SHA1
  
  65cac3bdb71487d6e14480ade6397347289e047b
- SHA256
  
  864b531c5f5a397b3fd2a8aa91c83f956d93300db9c986bfa7ae4744d7cb732f
- SHA512
  
  b32a5475f7ec76dc88201383616e712d867757de39525ac5cda21536c5144e82fb3fe4b08f5024678823e8e1ca7bd8ffea0cbbeab8845636adb6e11e1fd1c975
Score

10^/10

warzonerat infostealer rat
- WarzoneRat, AveMaria
  WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
  rat infostealer warzonerat
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

warzoneratinfostealerrat

behavioral2

warzoneratinfostealerrat

© 2018-2024

Terms | Privacy