bitrat | 4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d | Triage

Submit
Reports

Overview

overview

Static

static

4c4c971dc2...6d.exe

windows7_x64

4c4c971dc2...6d.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d.exe

Resource

win7-20220414-en

bitrat persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d.exe

Resource

win10v2004-20220414-en

bitrat persistence trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d
Size

3.8MB
MD5

346daada7cdc97b0d596928baea9ac29
SHA1

be45d9ba2d366fe1a640b7632ce71cd0761d0404
SHA256

4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d
SHA512

01b3444ac6433aee6451e01a1905c9d8e51f3eca1a7f885a9596166d252972a38869bd4d272dc3a329f2701c243b01338bec22cec0d0a9b9fee870bf73e438ab
SSDEEP

49152:ZXUIEeZzdeh/c7p1rNdd+JNEj0ykdj21x1YhFlX4bA/Hg/11VzeLG/7wqNKB2VId:ZXrEeZzdhjuV/gd1VzsGUqNKTHvQe3

Score

10^/10

bitrat

Malware Config

Extracted

Family

bitrat

Version

1.35

C2

185.157.162.100:58181

Attributes

communication_password
d4fab64cc4b3bcd4e84db4020ebb3c66
install_dir
Microsoft
install_file
micros.exe
tor_process
tor

Signatures

Bitrat family
bitrat

Files

4c4c971dc212eca78549870a200be0be7435115643af3633f18aef3e7e1f596d
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 687KB - Virtual size: 686KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy