ave_maria_rat[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

ave_maria_rat.exe

windows7-x64

ave_maria_rat.exe

windows10-2004-x64

5

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ave_maria_rat.exe

Resource

win7-20221111-en

warzonerat infostealer persistence rat

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

ave_maria_rat.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

ave_maria_rat.zip
Size

353KB
MD5

1392a739900bc293e1007a362cbbdf92
SHA1

7729896bbfd9f5d1789c019fa7340dc42afffcef
SHA256

63248ad3b64bf52266f0469e79e9f1b733dc0e2882142cf2167d7970b196973a
SHA512

06a2b62a351e2e7fd9995d146443362c607566903b38e9e59f95ac329043e88c6b8cde5d8485e52da2439d1732d1c886e1ad660b4b89e8032f971ea7dcf60c87
SSDEEP

6144:qAQN94dfO4UojT8Nlp2nVnlsodt1E780/PHukfk7NcgmC8UEluifg4M:Q9KG4f8in+odG/Puks7pmC8blz9M

Score

N/A

Malware Config

Signatures

Files

ave_maria_rat.zip
.zip
ave_maria_rat.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

6~| mj
Size: 335KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy