rms | 80a633c15926e0a6dc3f3c81e630482c98d9da8974a7286f2a421e3a63c1111d | Triage

Sharing

General

Target

80a633c15926e0a6dc3f3c81e630482c98d9da8974a7286f2a421e3a63c1111d
Size

5.4MB
Sample

221028-zywwmafgej
MD5

91e9402910f2c4fc5826a2eb38debae3
SHA1

ce097a3cd07a0191a27539c4ec964c0ccb78c60d
SHA256

80a633c15926e0a6dc3f3c81e630482c98d9da8974a7286f2a421e3a63c1111d
SHA512

3b62914a36911bd74bf65c5b2a6e027e75a1df994ee7c092b927a831fa5daaf1a8ff6fe522c5cf199696144e89bbc147963a2418e3a5a12e6dd8d16de300bc0d
SSDEEP

98304:n3K9cScv//PoIKHwnVA5d37Q6mjg69TBjIIj1XjEA6RTa5380CHPGWzH:n3UcNPOOVA5hQ6AX9TtHjEpRuKLvhz

Score

10^/10

rms rat trojan

Malware Config

Targets

- Target
  
  80a633c15926e0a6dc3f3c81e630482c98d9da8974a7286f2a421e3a63c1111d
- Size
  
  5.4MB
- MD5
  
  91e9402910f2c4fc5826a2eb38debae3
- SHA1
  
  ce097a3cd07a0191a27539c4ec964c0ccb78c60d
- SHA256
  
  80a633c15926e0a6dc3f3c81e630482c98d9da8974a7286f2a421e3a63c1111d
- SHA512
  
  3b62914a36911bd74bf65c5b2a6e027e75a1df994ee7c092b927a831fa5daaf1a8ff6fe522c5cf199696144e89bbc147963a2418e3a5a12e6dd8d16de300bc0d
- SSDEEP
  
  98304:n3K9cScv//PoIKHwnVA5d37Q6mjg69TBjIIj1XjEA6RTa5380CHPGWzH:n3UcNPOOVA5hQ6AX9TtHjEpRuKLvhz
Score

10^/10

rms rat trojan
- RMS
  Remote Manipulator System (RMS) is a remote access tool developed by Russian organization TektonIT.
  trojan rat rms
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2