Overview

overview

10

Static

static

1

Eagle Moni...ck.exe

windows10-2004-x64

10

Eagle Moni...er.exe

windows10-2004-x64

1

Eagle Moni...or.exe

windows10-2004-x64

1

Eagle Moni...2).exe

windows10-2004-x64

1

Eagle Moni...4).exe

windows10-2004-x64

1

Eagle Moni...er.exe

windows10-2004-x64

1

Eagle Moni...or.exe

windows10-2004-x64

1

Eagle Moni...gp.ps1

windows10-2004-x64

1

Eagle Moni...ls.url

windows10-2004-x64

1

Eagle Moni...in.dll

windows10-2004-x64

1

Eagle Moni...hy.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...re.dll

windows10-2004-x64

1

Eagle Moni...on.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...on.dll

windows10-2004-x64

1

Eagle Moni...us.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...ra.dll

windows10-2004-x64

1

Eagle Moni...op.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...er.dll

windows10-2004-x64

1

Eagle Moni...rp.exe

windows10-2004-x64

1

Eagle Moni...pp.dll

windows10-2004-x64

1

Eagle Moni...pp.exe

windows10-2004-x64

1

Eagle Moni...pp.dll

windows10-2004-x64

1

Eagle Moni...nt.exe

windows10-2004-x64

1

Eagle Moni...64.exe

windows10-2004-x64

1

Eagle Moni...ll.dll

windows10-2004-x64

1

Eagle Moni...64.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Eagle+Monitor+RAT+Reborn.zip

  • Size

    84.7MB

  • Sample

    230228-v2wmtace28

  • MD5

    d92e38c1e4a6160da9d1edc9ffc545fe

  • SHA1

    86bf919b1000a3ca3b40181bf2fe6edf23c0b7ec

  • SHA256

    ddced699b161cac8743e49be407d0aeddd817985030b146ecb13f38b136f58ce

  • SHA512

    d8732fd8bde48ae6b5624257d768d39dc44310ce671c6e487a4a26904c5b38855a5f36ca560bb03776b61732de06136cfba667bc4357a2ed26ef9ea8224e12c0

  • SSDEEP

    1572864:KHAmKKDz4+1SSxO4Ai4psqthitgnZ/2Z3zIcKuGzjJ9r8JW9lisaBObjRPquxG:KgmKK/4uSSfp0jh7nZeRzIcuf/4JW9Of

Score
10/10
redlinesectopratxwormcheatevasioninfostealerrattrojan

Malware Config

Extracted

Family

redline

Botnet

cheat

C2

54.186.174.253:35361

Extracted

Family

xworm

C2

decision-at.at.ply.gg:18084

Attributes
  • install_file

    svhost.exe

aes.plain

Targets

    • Target

      Eagle Monitor RAT Reborn/Crack.exe

    • Size

      55.4MB

    • MD5

      02333b8dc720e94cd0b2a78c763a7128

    • SHA1

      b1ecc16bef06c0939f03328a09928248b9244151

    • SHA256

      2f43d0bfd2a071e5f60324bb19ce0d6e5f70674193dd093513b9cfea6b3c1775

    • SHA512

      b14ac898d7281c983a8c530a4492f4629e47f895e83f5161f119a0584f3a442d03c27f763c707f0cdc9f35f229a7830dc99ba60444baa624b6555d4ffe50e0d8

    • SSDEEP

      1572864:STW8pIrCO9hktPnAHxqXIAI/sWSdEqCoQwL:kEPunyxE3t5EelL

    Score
    10/10
    redlinesectopratxwormcheatevasioninfostealerrattrojan

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

      infostealerredline

    • RedLine payload

    • SectopRAT

      SectopRAT is a remote access trojan first seen in November 2019.

      trojanratsectoprat

    • SectopRAT payload

    • Xworm

      Xworm is a remote access trojan written in C#.

      trojanratxworm

    • Stops running service(s)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor Builder.exe

    • Size

      2.3MB

    • MD5

      54c716e5aaa3343a381dd50e544ff04f

    • SHA1

      9c552340a5a2f8ff585e4db14b1a751ec5daf63f

    • SHA256

      16023696a8e553509ad5580b78744067faf2f06898cbf1d9e2f4da7b6e0cf519

    • SHA512

      06e54cfcc1788b18ad2d08014eae49188c1c8802e2e8f8be337455c5b5d499b5d826abb5cd4b0567aa22926ea2e694a04deb0331e2f781df4b04f9543a33830c

    • SSDEEP

      49152:cvkc8liZRy5rEAybfwM6rICtV7g0/kKWapnjkzn6YlLBEOAEow+W7SCp2vkc:cvkgFb6rICttR/kYu6kFEOAEjivk

    Score
    1/10
    behavioral2

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor Configurator.exe

    • Size

      1.8MB

    • MD5

      f7e86be999ac698b668e7b7aef80229a

    • SHA1

      5431b8094edd97821f7180449fee1957f2724d62

    • SHA256

      57d69c928fb33e0560ffb3731d6972fa6f440b17da6fb4cada906cee171a1816

    • SHA512

      e6d371f4ca8caf58754d4535451dd2cbba306bbbd5374ef70efb4ca381af48d60bfc028697e73e767fc9bfe05890cfc2b071efd75ac9c641f79389d0e5faa4ae

    • SSDEEP

      49152:B4liZRy5rEAyb/g0/kKWapnjkzn6YlLBEOAEow+W7SCU:B/F/R/kYu6kFEOAEj+

    Score
    1/10
    behavioral3

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor RAT Reborn (x32).exe

    • Size

      4.6MB

    • MD5

      d198c696d700df56e04317a1f5169920

    • SHA1

      89ceb4b7b35f2c74f3b9acd1db9d5e6411fe3346

    • SHA256

      a3de5d8587704bc3073e147389fd4c426f99c9cafef0c0b71fab1569a2e892e9

    • SHA512

      118ff90488bd8489b890438c5552fff26c036182529061032e0f463def453b9e1cc0c5b37ec770166020391d06ea4ee891b83ad9352d698f05feb917d1517294

    • SSDEEP

      98304:TRg+YNMTFbFPCYyvR/kYu6kFEOAElyaK:TRgXOTFbFK9vZk36zOAEl

    Score
    1/10
    behavioral4

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor RAT Reborn (x64).exe

    • Size

      4.6MB

    • MD5

      b34d31d3b257d61f6ffcf5680910e121

    • SHA1

      bf0b80b5a59790408f781c93ff18b4fd3cd00522

    • SHA256

      0a06210e1d357a31439b3dc2b3a38746eb071a3451111f56608d2ea66bbf03ab

    • SHA512

      0c9020a2889ba834becd6e247b875e116421df991bf61a4b3ca4d2d1253562e0cd5e3fa7fde3338e4052592d430a3f98ae08954381b52ab714f53aff0a296ee4

    • SSDEEP

      98304:NRguYNMsF0FPCYyvR/kYu6kFEOAElyad:NRgHOsF0FK9vZk36zOAEl

    Score
    1/10
    behavioral5

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor RAT Updater.exe

    • Size

      1.9MB

    • MD5

      eb71722ba5fbb1db282b301669f16dbb

    • SHA1

      cdde833057ac088ad6104108bc9063596d75e32e

    • SHA256

      774c5336a20dcecb00452ea815bc81a81ec425ccda34cc74bd31e127744eb5ad

    • SHA512

      4db001322d9c432ac634b1f7b5b9763a03e0a39da51ede2bf8266ed9e856cb2cd54ffc3b09af91c6788305e9e369fd2dd2f2d4f9ba19d7413835d4dcec107d1e

    • SSDEEP

      49152:+F5liZRy5rEAyb/g0/kKWapnjkzn6YlLBEOAEchW+w+W7SCgS:wSF/R/kYu6kFEOAElBh

    Score
    1/10
    behavioral6

    • Target

      Eagle Monitor RAT Reborn/Eagle Monitor Tasks Configurator.exe

    • Size

      1.1MB

    • MD5

      6b780a0e3160d3c8eb7d8fc7671b0152

    • SHA1

      a5a4cea17c3805fedc50212b9c52e78a203c74de

    • SHA256

      5f175b5b24c54ce41f604903269e1d68a12c744240e21d57c6eed5f030874f99

    • SHA512

      b193a5429df565f2c49baa73fc322818c95e5bfb65745749f2d12641f3090494982538e218023d9ab96500b95adbed9d1c5b474b1c40916d9db5584b2abaf31c

    • SSDEEP

      24576:7n3QMRG8KunsMMVWtzUEW0DHpntVedzOl+6YoX8LBEOAsdbBy:7ng0/kKWapnjkzn6YlLBEOAE

    Score
    1/10
    behavioral7

    • Target

      Eagle Monitor RAT Reborn/Flags/FlagsPack1/gp.ico

    • Size

      124KB

    • MD5

      d553cb9a747f2f8611275793379fe557

    • SHA1

      a30d8bf45983238cbdf7aa55da33bd6367e499ce

    • SHA256

      b8f4d2d5009741d9548152b00bddb64f6e079e926a6db3e1ee3b777998df021d

    • SHA512

      b3c5a38e4030f0aecaeda6fb6809f759dc992294d822d7d1543d98700493497616ef952c1afb471ad7eb7a8270c2b50ae119813a41e7e8ae3eee99a3a4fe44fc

    • SSDEEP

      768:tqMTUb3aqIoG96Jt1oRi9EgweTWYyPFVUz5Lpooc8Ys9HCVPwIUU++Y:tqOUzba6kqWYtTooc8YshCUU++Y

    Score
    1/10
    behavioral8

    • Target

      Eagle Monitor RAT Reborn/Get all rats & cracked tools.url

    • Size

      124B

    • MD5

      823c9189881af9ac7791f08a0ddeed40

    • SHA1

      50454bbceb20c6ac6d3bf545a2a2b40b9d06617d

    • SHA256

      15bac6f8ac34087005a6e66a8fae4e87c8e31f3a29923ac9708eb98a28a278ad

    • SHA512

      6eae2a940db05020b8487abb4ba96589f41d3075e7ee1856f5c71b186b97a6065fd188a1fe9d4cb1bbd35d92235a5ef4d40f9e14d2ccabd8fc5204ede5cc5ad5

    Score
    1/10
    behavioral9

    • Target

      Eagle Monitor RAT Reborn/Plugins/Admin.dll

    • Size

      40KB

    • MD5

      40671ef1f19088ac8164cb9929710e57

    • SHA1

      c1f9218b5f201a21006f26fe52d3bc7dddbf4afd

    • SHA256

      40a5b564792d89e5617b5773516f6562860e64d76f75853a24ad227e89b774b9

    • SHA512

      15e780bf8d22ce94f5f3275d06ecc86a39f3af9a3b913238cf3c4e31e0854c3e620c71e8742ad6a13b23547f422b6ff0895a010350f73cc19f0f4d9da3df5380

    • SSDEEP

      768:p+jRHVXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9Lwv/KITefP0nH:p0SprNvcewLRcT12fNnkL8/Kji

    Score
    1/10
    behavioral10

    • Target

      Eagle Monitor RAT Reborn/Plugins/Cryptography.dll

    • Size

      915KB

    • MD5

      7773582c5c8204f34ba8b9d27a0e1c8d

    • SHA1

      02e4ae0b8c6246a5780a4d899ea9b76ff483cd9a

    • SHA256

      f3d4ca45efb40158ea6a87781aca041661f732b04747ed52e8430e54cf74f7cd

    • SHA512

      870937b535dc5e4915e6ff5d52601d326c3d27d50e63d1d725393a4ff8ca87e4aa37032a6be9a093a96f7c8aad56f926d064a7dd3946bb2e7d41d145ac9ec168

    • SSDEEP

      24576:16Q/ggcJv1+vVhy2gjozFuSWqKitytTM:gPgcJtshyl0uwtV

    Score
    1/10
    behavioral11

    • Target

      Eagle Monitor RAT Reborn/Plugins/FileManager.dll

    • Size

      44KB

    • MD5

      19cccc5988e78e7b3dbcb0ac09c1df0a

    • SHA1

      15a61944d40795d1c4242c5eb83a8eea1f457a52

    • SHA256

      bb925fc2ef7cbaaef7da68af7a191d917f976c06ddaa19bc869058d4e13d15e8

    • SHA512

      18183be5d012d88bc25af206b8cd75c2cf2347b5e2b30c5b42a705634799b24809c7cdda22a36ca74d8ea001d4b061b682a27a1d0ecd2600bcbc923ac3842df6

    • SSDEEP

      768:MXh5VXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvWXjY0uR:ISprNvcewLRcT12fNnkL83R

    Score
    1/10
    behavioral12

    • Target

      Eagle Monitor RAT Reborn/Plugins/Hardware.dll

    • Size

      39KB

    • MD5

      2a4f9e1b8f1cda3a34fc825799f884ab

    • SHA1

      aef866d5554b66d397c6eac8985eb39f924b6cc6

    • SHA256

      6185f44196f18c061ff526faa83273919fa653116803deb9c70a1063a19d18fe

    • SHA512

      72ed272352f6bc008df2d1c3514cd20059cb82b6ca9f1826bdb34cfae939b667cb04fd49877d63a8b1279bbd6b999ad440ea30e2d71e21eea5d1d20c23913518

    • SSDEEP

      768:jnKZVXuveulaz/HNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvT:jYBulG/7prNvcewLRcT12fNnkL8T

    Score
    1/10
    behavioral13

    • Target

      Eagle Monitor RAT Reborn/Plugins/Information.dll

    • Size

      392KB

    • MD5

      b975b113985579e2b83f0a98a4596416

    • SHA1

      047fcccf08b0d42437c1354f005ff5cd3c2b7d14

    • SHA256

      b3b595d98f85f5899bec6df7811ea4db2f64f8c047f946b44f7a38d68974f88b

    • SHA512

      bb2e255c394bd3eadecc98af36c5745fdabcd295ba19cba6172a2e80e6f95b7f17f4de6c1f75fa7281ca91655a5728cf417b1c5fc43a0f33af0f5a987d2fbbc2

    • SSDEEP

      6144:Kk8UgCixgDLws3UXyobRZVLlfh7rZthO+JjkuHEEAt/wz/60MKRcbcBM:KqWxOwLZdfrXg+JwuKt/S/60Db

    Score
    1/10
    behavioral14

    • Target

      Eagle Monitor RAT Reborn/Plugins/Keylogger.dll

    • Size

      43KB

    • MD5

      a4baa63493208b47f25d568753e24d94

    • SHA1

      a2c9ee121a327889ea84878fe3add33d70f0ac21

    • SHA256

      32197f7488e9a44765af99d6a0576474887bbaa6d30ef9d63ae30c6c734b11ab

    • SHA512

      4a42a55beb5222e32b6f2340f2ed378e289250e0ebff2fe7ca005fb097afef3533936498abd62878fec17e91a41fa686dca9fbbd3225845eb30e2de174dfb601

    • SSDEEP

      768:1kPHTfAVXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvNkNLL3gg6:MbuSprNvcewLRcT12fNnkL8mH3gg6

    Score
    1/10
    behavioral15

    • Target

      Eagle Monitor RAT Reborn/Plugins/MemoryExecution.dll

    • Size

      60KB

    • MD5

      831dca31149cc73700acbd47b4a594ff

    • SHA1

      79d93e30107f7e6eb22612cc103d8f2ea97de4aa

    • SHA256

      8cdb963044d8388337e39673dbd7f1c81c65c8ee21c7656ba2e686667f7ccec2

    • SHA512

      876def5fb2c859468f6045b2c36249faf150cc8af1b326cc1de3c81e3d3f3fed014a1921f15967437318279901573f5d46b5a00a46c9607864cfe1f372dc41cb

    • SSDEEP

      1536:Sk8Eh6PuSprNvcewLRcT12fNnkL855d/kTztxxK2zTf5Fc:Sk8Eh626NvcNLRcT2d5KDrc

    Score
    1/10
    behavioral16

    • Target

      Eagle Monitor RAT Reborn/Plugins/Miscellaneous.dll

    • Size

      43KB

    • MD5

      85c3f352f25074b07c5aa4167466d456

    • SHA1

      6c05c2993bafdc03d57505a3fdb78f3ad653a568

    • SHA256

      a650748003bfe00fd236dc5c8e6ea1b480dea50df2091bfda0375ddceb23ba28

    • SHA512

      4dd9861d9ac12c509743d71c5c455038ac2f2621289c07500c74695dad2a509dc446418a91f6fefded2de67740589b8758326a6029d3a5bbe89e3fc75b544924

    • SSDEEP

      768:ThchCkVXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvZyX8iDcdbZFJc:ESprNvcewLRcT12fNnkL8YX8iD6bZPc/

    Score
    1/10
    behavioral17

    • Target

      Eagle Monitor RAT Reborn/Plugins/PowerManager.dll

    • Size

      40KB

    • MD5

      dcade9f7fcad4ff5b33efb18d58b0e9f

    • SHA1

      239778a90d94c409e0a1153c6d5d66b0ccc4d3a0

    • SHA256

      2006ccde5d0e953249d5a0657c1e7961994d4e26b2724ffce7d3b1271c97ba33

    • SHA512

      55afcf521230679c1d320c3e3547d20e72259fac17c92d67d212e5e384d5414e784f399863cd44345b372f5dd24705c090a3a7aaa9f5454ddfbb52e4f59b0256

    • SSDEEP

      768:9iuqVXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvGjkIWdN7OPl/w:9rsSprNvcewLRcT12fNnkL8GQI4Bf

    Score
    1/10
    behavioral18

    • Target

      Eagle Monitor RAT Reborn/Plugins/ProcessManager.dll

    • Size

      50KB

    • MD5

      75362443169f75da6f818a94e984c173

    • SHA1

      91db1d33ce8b9cb9eef90320893defcbb928ee40

    • SHA256

      bf0b5ea5a148e460bf78736ac0d361ab27cc075052085990a8634bbbf2854fed

    • SHA512

      26cdaa2137d681f1fe5847df0aa4180d97ae295b9ff19aee5a8d24b3c74da36ffe73d52a4b2508302046608a6892c7eee263a0f51e4597e566501e025749a085

    • SSDEEP

      1536:5Z7SprNvcewLRcT12fNnkL83Z4UQpP+R9KG:5Z76NvcNLRcT2tfN

    Score
    1/10
    behavioral19

    • Target

      Eagle Monitor RAT Reborn/Plugins/RemoteCamera.dll

    • Size

      91KB

    • MD5

      380b2a851e9ee25a905a6ecc16e4803b

    • SHA1

      3ba3cb6b3f4556991c60404f8687f7a0344abd98

    • SHA256

      a88a7d5e0db78fe4b8bdc3254a89dbb387607ef254196d41e5c64c7bcff75c48

    • SHA512

      9d7121964f4a585a5a8c84f6c8276f4febe5d5241be7552af86cca0ccf0c12fcd8f51344092ac90bde99ccf41a9ad69182ed101fce11cbaa33cfb599875bdd83

    • SSDEEP

      1536:p4M/TRYO47g41/2EaioEdEZ0+z80Cje3ns+6P93lfDSprNvcewLRcT12fNnkL8DU:XVYOY1dZaioWEZHoj4sVfD6NvcNLRcTP

    Score
    1/10
    behavioral20

    • Target

      Eagle Monitor RAT Reborn/Plugins/RemoteDesktop.dll

    • Size

      45KB

    • MD5

      8639c909e61e18a75c4306ab441c1f29

    • SHA1

      2e1e938c4e08718f0c80086f5249e28474b66949

    • SHA256

      e3882d17e1056eaac4c606eaa60b7f755d2b5429d40e6a264ff5cc5e8043c936

    • SHA512

      05f533ff4858b19ba6ba758384c8c71de5bc2666d749dfced2778811198d7732cf83dbdc62cd0be1008c120efe4f77e1419fe4761230994291a3999b1bb668ec

    • SSDEEP

      768:1KMsCGkgXVXqNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvfehRt+LzE:azkwSprNvcewLRcT12fNnkL8d8

    Score
    1/10
    behavioral21

    • Target

      Eagle Monitor RAT Reborn/Plugins/ScreenLocker.dll

    • Size

      43KB

    • MD5

      801ce267b414234fc19fc5b52578f07b

    • SHA1

      a95bed641c7cbbcd2814a8b90e7b41ee5993df10

    • SHA256

      e7678bd36eb938216995e8ed4168553ad2d2dafd2096d5172dd92de22caebed1

    • SHA512

      8eacc2cb270ef85ebebdd32903706482b4bb62ed65700c8b9f0bb902df407fef33fdc09ce98b2f91086c540f91819993d9e61e5d198b65b9a17ceafcbc4ac444

    • SSDEEP

      768:sWdVXuveulaz/HNdLprrwzzrTKu4cejsLRjQaEZZ3/VjWHXfpPnU9LwvW4SFXx21:TBulG/7prNvcewLRcT12fNnkL8zeB/9w

    Score
    1/10
    behavioral22

    • Target

      Eagle Monitor RAT Reborn/Plugins/Stealer.dll

    • Size

      141KB

    • MD5

      d0f2f190247d5baba8f41e13ecb1116f

    • SHA1

      4b2c5cc756baf426a04931fefe58dd546aea3bb7

    • SHA256

      52a2c7ad97237a1936cf4ebf6a529e895b4beb0db457855057b9931ad07e61c0

    • SHA512

      8eb5e3b8eab96e34fbfbd9083be831f6884a11216bb86a2301ebea66eb0e108d309416d2e9a6943f72b120173a0c11dc2fd79dc0a18a86ac7530c7d60c00c422

    • SSDEEP

      3072:v6NvcNLRcT2DtVXNdZokEehfrNgKYgV/u2dQWibNL4Mdaf:vgKRcAt9NJ+gFlib

    Score
    1/10
    behavioral23

    • Target

      Eagle Monitor RAT Reborn/SamplePayloads(x32)/PayloadCSharp.exe

    • Size

      4KB

    • MD5

      4ab80d0affac15cc64ff0d40af546a3c

    • SHA1

      283b68648b0b2e83ea8b911b8ea4224b969b4742

    • SHA256

      080fb78515b4e20d9f78ba7fb7d3b58c5afbadade2dc68343ff4fef2becd349c

    • SHA512

      3762d9c1d865d4c171326c4290f32a74136bceb6853918dfeda12df785933319c15951f2c5b55c078ce98000c8e8aee25d08867f391f76d6811f6a6f00e5aa2d

    Score
    1/10
    behavioral24

    • Target

      Eagle Monitor RAT Reborn/SamplePayloads(x32)/PayloadDllCpp.dll

    • Size

      8KB

    • MD5

      b74cbd7eb9122dfa0813df1b63585021

    • SHA1

      03b978583e399599df762c6aa3961e96619528b7

    • SHA256

      3664e7be24277252c4025b78e73ca27a20da0a1267f6dccee98d95773172608a

    • SHA512

      2b724e5b0467f62e49fd8a1bc63b0d1c1a4377ca5150b237e668b26920bec223a7879a9caea4f22e595d21c6f617cb15c47b1f4198a3ab977608af67067b184d

    • SSDEEP

      96:3ScLcXCaiX1tAl58/H2XDZTZsC8+k4s/DjFjOXOQs7xuufQaJozQN:3SWABiX1tA82TZTZdA1jOXXs7A6jJoz

    Score
    1/10
    behavioral25

    • Target

      Eagle Monitor RAT Reborn/SamplePayloads(x32)/PayloadExeCpp.exe

    • Size

      9KB

    • MD5

      e5bee2cfb08ff12d9185e6c85f973375

    • SHA1

      c10fb5ca7d6c5f1c513480210e4a14914d677d76

    • SHA256

      84ca8ae01d85f8142b552274dd83ce3e0dfeb71bd6df00558b78aa9529396419

    • SHA512

      39834be1ac6e110fce16179299593220b04aa0e1b1a3565120e75a234ed1391ab0a4b41b951a890404067e13f82b9366b3e39612b6ad662bd9e6e3469d59e27e

    • SSDEEP

      192:hQdF/jfZ1SViCnwzjOBxiiSV7E5pz6rJoZguZ:hi7fZEVNnajSQJV7mOu

    Score
    1/10
    behavioral26

    • Target

      Eagle Monitor RAT Reborn/SamplePayloads(x64)/PayloadCpp.dll

    • Size

      10KB

    • MD5

      27905d3d1be9967a396f46e8e45b2d97

    • SHA1

      ab375463094b9c7246b96a641abd5a203bd03518

    • SHA256

      1b5673eb51bb49f5e8498bb2ae006f2d334affe5841d8b527e7a233d74be3921

    • SHA512

      a4a2624a1fa266e312efd1b0557d6afb178f3304c82179ebf6931035c4a6ea0e175f978348725e42305c02570d6a9bbf4ac936a8938cc8be5ec2bc8a28b1ecc1

    • SSDEEP

      96:WvjFlaEAFlTTBfxo1/uRo4r3HZhJuUuwJsQRBsIKayQ+8Ylz/TKaQesDJ6+:GaE+/pmGR/o98BR7LKrQHD

    Score
    1/10
    behavioral27

    • Target

      Eagle Monitor RAT Reborn/Stubs/Client.exe

    • Size

      55KB

    • MD5

      42a9472534055f9f9d834e51d33e57c5

    • SHA1

      3dba0ff2bdda27b160c509a81e6f18350f891f67

    • SHA256

      a03058a59b0dd6be41646615abc1ab4140b84f3c7570ddc0b1aa057d5441d6cf

    • SHA512

      49886c33bf6ed525aea67b9a12de2af163c2e8674572ce7a9fc19679db47b8488f7999d411fe6ff6a960013603c093afa528f3e207bfc1f691989c224bf2a423

    • SSDEEP

      1536:goUty6BM55Bzn3OVF/eprNvcewLRcT12fNnkL8ELD6u:N2y6Bk5BzeVFONvcNLRcT2wd

    Score
    1/10
    behavioral28

    • Target

      Eagle Monitor RAT Reborn/Stubs/Client64.exe

    • Size

      54KB

    • MD5

      1b5649ecdb6149c420a6beaf1e414fe0

    • SHA1

      c59f81a88517f9d3f104162166f4fd7e9e8c1398

    • SHA256

      da901e6f166c4a3aae4bd0b91fed363124e0ff753d88b7f72a58616817e1b94f

    • SHA512

      47f915c8ff7b3037139d4f1a29335fa4f05432f6aaa39a3e46a00d25fe5a932e86c4d82748c314d7d2d732175bbcaac1cddfeb41cbaad0c4ef6cbb0a90ea5d6e

    • SSDEEP

      1536:loUty6BM55Bzn3OVF/eprNvcewLRcT12fNnkL8REv:OWy6Bk5BzeVFONvcNLRcT20

    Score
    1/10
    behavioral29

    • Target

      Eagle Monitor RAT Reborn/Stubs/ClientDll.dll

    • Size

      55KB

    • MD5

      5ad73f055433de153edadc3d2e0ecdb8

    • SHA1

      d27dfd3476e1400b6fb5923cfa5a5b27821f0a8e

    • SHA256

      8bc0c6838aa9ce5dd5b3a9973f7debce9b7290b3170f8576354007ebbe4cd4d3

    • SHA512

      c1f76f82cef7e54f3f087d3bdeb10e5842215f64e2a47f48d7f222cbd2ea15e8cbfda831e3523477e85eb0cb8f530c58a1746a909b55d38ea9a5130e57383db8

    • SSDEEP

      1536:py6BM55Bzn3OVF/eprNvcewLRcT12fNnkL88eI6q:py6Bk5BzeVFONvcNLRcT2W6q

    Score
    1/10
    behavioral30

    • Target

      Eagle Monitor RAT Reborn/Stubs/ClientVB64.exe

    • Size

      55KB

    • MD5

      dbd9b5932ffa823d53ecef0702041607

    • SHA1

      7eca54d7428d2763b2335423bef110cefd308b9e

    • SHA256

      d679f33296d420c2d32387ef0bcc3884064ed5a902d0a54d344ea3c62d60df45

    • SHA512

      10f020bc634fef76b4197c8ab53bd2f5d65a827c7be41c6b8f774dbd6db859f54d46f249833a39e19cde6c8004d2f8ac2c16ba6c1df9eea913ecd746cdf29199

    • SSDEEP

      1536:0aArhy6BM55Bzn3OVF/eprNvcewLRcT12fNnkL8vPm2mI:0Rhy6Bk5BzeVFONvcNLRcT21mI

    Score
    1/10
    behavioral31

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Service Stop

1
T1489

Tasks

static1

Score
1/10

behavioral1

redlinesectopratxwormcheatevasioninfostealerrattrojan
Score
10/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10