hiverat | 87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d | Triage

Submit
Reports

Overview

overview

Static

static

87f368326e...1d.exe

windows7_x64

87f368326e...1d.exe

windows10-2004_x64

Sharing

General

Target

87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d
Size

289KB
Sample

220508-gz4zhshba7
MD5

77b680976090d7a835d4b8fe78261bac
SHA1

a9362e3123fe9dd18bc252ba9c2620265227a63b
SHA256

87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d
SHA512

51850a8e64e2133caf4f558ac9bbaef62ef7b2291f8d7d7b0dc4fa0bf8cc309caf48d898e0bbc9e31dbd90d7c46616242c7f4fb88f6422fe918e30cdcc8cfa3e

Score

10^/10

hiverat rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d.exe

Resource

win7-20220414-en

hiverat rat stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d.exe

Resource

win10v2004-20220414-en

hiverat rat stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d
- Size
  
  289KB
- MD5
  
  77b680976090d7a835d4b8fe78261bac
- SHA1
  
  a9362e3123fe9dd18bc252ba9c2620265227a63b
- SHA256
  
  87f368326e3250f12dd518b3b0dfe773a67f47f9bf3347678eec99bf2045ee1d
- SHA512
  
  51850a8e64e2133caf4f558ac9bbaef62ef7b2291f8d7d7b0dc4fa0bf8cc309caf48d898e0bbc9e31dbd90d7c46616242c7f4fb88f6422fe918e30cdcc8cfa3e
Score

10^/10

hiverat rat stealer
- HiveRAT
  HiveRAT is an improved version of FirebirdRAT with various capabilities.
  rat stealer hiverat
- HiveRAT Payload
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

hiveratratstealer

behavioral2

hiveratratstealer

© 2018-2024

Terms | Privacy