hiverat | d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d | Triage

Submit
Reports

Overview

overview

Static

static

d44651217b...7d.exe

windows7_x64

d44651217b...7d.exe

windows10-2004_x64

Sharing

General

Target

d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d
Size

303KB
Sample

220415-llj5eaagg5
MD5

44738f6a68e89ead0109704208059b64
SHA1

18119563ec62b034e81d9a315dfbc17bf5e682c8
SHA256

d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d
SHA512

59c78756389231e13f138e159464e2a859b16e4558af06f132a394fa162c4cb5b04ff94fd77d4ebf08623cbec9c7f16b1583df842b5e37729a4cceb0d7715eb2

Score

10^/10

hiverat rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d.exe

Resource

win7-20220331-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d.exe

Resource

win10v2004-20220414-en

hiverat rat stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d
- Size
  
  303KB
- MD5
  
  44738f6a68e89ead0109704208059b64
- SHA1
  
  18119563ec62b034e81d9a315dfbc17bf5e682c8
- SHA256
  
  d44651217b87d290e2be6c004e8732817bf1d3d61043a93b25e1130ab7a56c7d
- SHA512
  
  59c78756389231e13f138e159464e2a859b16e4558af06f132a394fa162c4cb5b04ff94fd77d4ebf08623cbec9c7f16b1583df842b5e37729a4cceb0d7715eb2
Score

10^/10

hiverat rat stealer
- HiveRAT
  HiveRAT is an improved version of FirebirdRAT with various capabilities.
  rat stealer hiverat
- HiveRAT Payload
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

hiveratratstealer

© 2018-2025

Terms | Privacy