General
-
Target
New-Order_2021-12-14_01-44.exe
-
Size
198KB
-
Sample
211214-cgv7fagacr
-
MD5
db2f1ed0345766e080940d66d31e6757
-
SHA1
31ec6cd22db735c0695fe64aac87e138d2f3978b
-
SHA256
a1831c0238db7a6a5ae73a0c3e9c8be6075b20a3c9e393fc2a54fe830a923951
-
SHA512
fbaade57cf8ff2c93a45f24654a756bb038600314d6e658f241e3359d7c5f3f869071d60f777421f9d8e9d7b8adf143c14900399134572209e5e731759635936
Static task
static1
Behavioral task
behavioral1
Sample
New-Order_2021-12-14_01-44.exe
Resource
win7-en-20211208
Malware Config
Extracted
warzonerat
huhuhu.ooguy.com:5200
Targets
-
-
Target
New-Order_2021-12-14_01-44.exe
-
Size
198KB
-
MD5
db2f1ed0345766e080940d66d31e6757
-
SHA1
31ec6cd22db735c0695fe64aac87e138d2f3978b
-
SHA256
a1831c0238db7a6a5ae73a0c3e9c8be6075b20a3c9e393fc2a54fe830a923951
-
SHA512
fbaade57cf8ff2c93a45f24654a756bb038600314d6e658f241e3359d7c5f3f869071d60f777421f9d8e9d7b8adf143c14900399134572209e5e731759635936
Score10/10-
WarzoneRat, AveMaria
WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
-
Warzone RAT Payload
-
Accesses Microsoft Outlook profiles
-