hiverat | 93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063 | Triage

Submit
Reports

Overview

overview

Static

static

93eb342b1d...63.exe

windows7_x64

93eb342b1d...63.exe

windows10-2004_x64

Sharing

General

Target

93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063
Size

440KB
Sample

220503-y83w9aeegp
MD5

18173a14dda8acb4faec79500b81083f
SHA1

0a5324267c4d4befdd89add3c1d8d9c467a85902
SHA256

93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063
SHA512

aa3fc2bf78430ead7177592c58dccaa5fd4ad001e19d195d5fd387b791414c9aad39fb8ea7aff5c303a12f37fc4a94f094de18f7de8119deb890814526c5187a

Score

10^/10

hiverat persistence rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063.exe

Resource

win7-20220414-en

hiverat persistence rat stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063.exe

Resource

win10v2004-20220414-en

hiverat persistence rat stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063
- Size
  
  440KB
- MD5
  
  18173a14dda8acb4faec79500b81083f
- SHA1
  
  0a5324267c4d4befdd89add3c1d8d9c467a85902
- SHA256
  
  93eb342b1d21e99bfe5a88dfef65c886018dc120cd86310a893c77faeceb5063
- SHA512
  
  aa3fc2bf78430ead7177592c58dccaa5fd4ad001e19d195d5fd387b791414c9aad39fb8ea7aff5c303a12f37fc4a94f094de18f7de8119deb890814526c5187a
Score

10^/10

hiverat persistence rat stealer
- HiveRAT
  HiveRAT is an improved version of FirebirdRAT with various capabilities.
  rat stealer hiverat
- HiveRAT Payload
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

hiveratpersistenceratstealer

behavioral2

hiveratpersistenceratstealer

© 2018-2024

Terms | Privacy