General
-
Target
dump.bin
-
Size
113KB
-
Sample
211028-k28l9sbhc5
-
MD5
bbb2a0084eb5f17a2de565cae720544e
-
SHA1
2e03043c821da3a8a937c2420329d021524e640d
-
SHA256
a97c3b1c84c38b02b38d32111597540c3591f7ba55f368f7f567315eb72cc3b7
-
SHA512
0d29a2c508e0c4afbef5dc0569f15c80f79466a6dcc460af309255688dfa79bb880f32fd4fed784d7e76d5760638a5da4623aa8eb34a5fb2adb6bca9bc165b35
Static task
static1
Behavioral task
behavioral1
Sample
dump.bin.exe
Resource
win7-en-20210920
Behavioral task
behavioral2
Sample
dump.bin.exe
Resource
win10-en-20210920
Malware Config
Extracted
warzonerat
KTS666.PUBLICVM.COM:5200
Targets
-
-
Target
dump.bin
-
Size
113KB
-
MD5
bbb2a0084eb5f17a2de565cae720544e
-
SHA1
2e03043c821da3a8a937c2420329d021524e640d
-
SHA256
a97c3b1c84c38b02b38d32111597540c3591f7ba55f368f7f567315eb72cc3b7
-
SHA512
0d29a2c508e0c4afbef5dc0569f15c80f79466a6dcc460af309255688dfa79bb880f32fd4fed784d7e76d5760638a5da4623aa8eb34a5fb2adb6bca9bc165b35
Score10/10-
WarzoneRat, AveMaria
WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
-