c5a3adfb752d687ff014bc915aa27b305230dfd18b25314e9cf5077abea0d8f2

Submit
Reports

Overview

overview

Static

static

Venom_RAT_...to.dll

windows10-2004-x64

Venom_RAT_...I2.dll

windows10-2004-x64

Venom_RAT_...rd.dll

windows10-2004-x64

Venom_RAT_...ra.dll

windows10-2004-x64

Venom_RAT_...er.dll

windows10-2004-x64

Venom_RAT_...un.dll

windows10-2004-x64

Venom_RAT_...on.dll

windows10-2004-x64

Venom_RAT_...er.exe

windows10-2004-x64

Venom_RAT_...er.dll

windows10-2004-x64

Venom_RAT_...ib.dll

windows10-2004-x64

Venom_RAT_...us.dll

windows10-2004-x64

Venom_RAT_...at.dll

windows10-2004-x64

Venom_RAT_...ns.dll

windows10-2004-x64

Venom_RAT_...nt.exe

windows10-2004-x64

Venom_RAT_...em.dll

windows10-2004-x64

Venom_RAT_...NC.exe

windows10-2004-x64

Venom_RAT_...Ip.dll

windows10-2004-x64

Venom_RAT_...ib.dll

windows10-2004-x64

Venom_RAT_...ib.dll

windows10-2004-x64

Venom_RAT_...et.dll

windows10-2004-x64

Venom_RAT_...ate.js

windows10-2004-x64

Venom_RAT_...er.vbs

windows10-2004-x64

Venom_RAT_...URL.js

windows10-2004-x64

Venom_RAT_...VNC.js

windows10-2004-x64

Venom_RAT_...der.js

windows10-2004-x64

Venom_RAT_...oxy.js

windows10-2004-x64

Venom_RAT_...56.ps1

windows10-2004-x64

Venom_RAT_...nts.js

windows10-2004-x64

Venom_RAT_...ner.js

windows10-2004-x64

Venom_RAT_...ain.js

windows10-2004-x64

Venom_RAT_...der.js

windows10-2004-x64

Venom_RAT_...ate.js

windows10-2004-x64

Analysis

max time kernel
86s
max time network
164s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
26-03-2023 23:39

Sharing

Copy URL

Twitter E-mail

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Venom_RAT_COMPILED/BouncyCastle.Crypto.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Venom_RAT_COMPILED/Guna.UI2.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Venom_RAT_COMPILED/Plugins/Discord.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Venom_RAT_COMPILED/Plugins/Extra.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Venom_RAT_COMPILED/Plugins/FileSearcher.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Venom_RAT_COMPILED/Plugins/Fun.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Venom_RAT_COMPILED/Plugins/Information.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Venom_RAT_COMPILED/Plugins/Keylogger.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

Venom_RAT_COMPILED/Plugins/Logger.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Venom_RAT_COMPILED/Plugins/MessagePackLib.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Venom_RAT_COMPILED/Plugins/Miscellaneous.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Venom_RAT_COMPILED/Plugins/Netstat.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Venom_RAT_COMPILED/Plugins/Options.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Venom_RAT_COMPILED/Stub/Client.exe

Resource

win10v2004-20230220-en

asyncrat rat

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Venom_RAT_COMPILED/System.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Venom_RAT_COMPILED/Venom RAT + HVNC.exe

Resource

win10v2004-20230220-en

asyncrat rat

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral17

Sample

Venom_RAT_COMPILED/cGeoIp.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Venom_RAT_COMPILED/dnlib.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Venom_RAT_COMPILED/mscorlib.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Venom_RAT_COMPILED/protobuf-net.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/HVNC/FrmMassUpdate.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/HVNC/FrmTransfer.vbs

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/HVNC/FrmURL.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/HVNC/FrmVNC.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/HVNC/WebBuilder/WebBuilder.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Quasar/Server/Forms/FrmReverseProxy.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/Algorithm/Aes256.ps1

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/Connection/Clients.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/Connection/Listener.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/FormMain.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/Forms/FormBuilder.js

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Venom_RAT_SOURCE_CODE/Venom RAT + HVNC/Server/Forms/FormCertificate.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Venom_RAT_COMPILED/protobuf-net.dll
Size

248KB
MD5

0ccc4b1a3c937a538b0a737a091b7e5e
SHA1

7d18dd89b0c163989536c18624250c12751ca4a6
SHA256

cc54dc84754ef13c7f354f18f2c730cc2aa8997b5e50ea902c57c6cc3a7e3628
SHA512

85046f44119ec08050c0c5ae8080836381addc2e91f4d13fb2ce7d30fa18e4209044811f128fbf29a981b90be76dc0167fcd5002c84c0cb063bba5dc1c588d23
SSDEEP

6144:7JGvYB4KPzrzFCQx0gP9DYI20mUO3qdefOf9PM:9aK4srxXPaIMUO3umU

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Venom_RAT_COMPILED\protobuf-net.dll,#1
1⤵
PID:3360

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads