hiverat | fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9 | Triage

Submit
Reports

Overview

overview

Static

static

fcff8f4e1c...c9.exe

windows7_x64

fcff8f4e1c...c9.exe

windows10-2004_x64

Sharing

General

Target

fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9
Size

1.0MB
Sample

220415-kw98xahde6
MD5

c155dbf53ae3d27c885344e67c53f4a9
SHA1

f33018f1c97f8e45b3d18590fa452484cbd33c4e
SHA256

fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9
SHA512

bd551fdc67db54ce5a894da69cf1a5aa78cb7aaa27d04851f66390178d0f41e3a682770542822df47cd581f19d2d3d586c0209139e3d57494200d69fa8772dcf

Score

10^/10

hiverat rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9.exe

Resource

win7-20220414-en

hiverat rat stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9.exe

Resource

win10v2004-20220331-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9
- Size
  
  1.0MB
- MD5
  
  c155dbf53ae3d27c885344e67c53f4a9
- SHA1
  
  f33018f1c97f8e45b3d18590fa452484cbd33c4e
- SHA256
  
  fcff8f4e1c8655e2b4c1239ac0947a7a56eca16dcec9c2ad58b791b726eb27c9
- SHA512
  
  bd551fdc67db54ce5a894da69cf1a5aa78cb7aaa27d04851f66390178d0f41e3a682770542822df47cd581f19d2d3d586c0209139e3d57494200d69fa8772dcf
Score

10^/10

hiverat rat stealer
- HiveRAT
  HiveRAT is an improved version of FirebirdRAT with various capabilities.
  rat stealer hiverat
- HiveRAT Payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

hiveratratstealer

behavioral2

© 2018-2024

Terms | Privacy