General
-
Target
lionlee.exe
-
Size
113KB
-
Sample
220117-wrp8qacafr
-
MD5
3bd42085584a11f32b619102c57eba91
-
SHA1
6ece11c3efec83e33b4acc1458aa62953891c420
-
SHA256
6e0f7705c589e4fbfdd1b6c1431a675aa58b863a06448aaade026463f55024ff
-
SHA512
dba8345d5697bfe778c7737c2f8d23bcb7dc092be253055608eb32785a73d87acc49c649d633ba59eaa6bed313962838b23823fa928610e6aa65dacf451d71df
Static task
static1
Behavioral task
behavioral1
Sample
lionlee.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
lionlee.exe
Resource
win10v2004-en-20220112
Malware Config
Extracted
warzonerat
lionleee.nerdpol.ovh:5200
Targets
-
-
Target
lionlee.exe
-
Size
113KB
-
MD5
3bd42085584a11f32b619102c57eba91
-
SHA1
6ece11c3efec83e33b4acc1458aa62953891c420
-
SHA256
6e0f7705c589e4fbfdd1b6c1431a675aa58b863a06448aaade026463f55024ff
-
SHA512
dba8345d5697bfe778c7737c2f8d23bcb7dc092be253055608eb32785a73d87acc49c649d633ba59eaa6bed313962838b23823fa928610e6aa65dacf451d71df
Score10/10-
WarzoneRat, AveMaria
WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
-