Overview

overview

10

Static

static

10

2036-54-0x...ry.dll

windows7-x64

1

2036-54-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    2036-54-0x0000000000860000-0x00000000009BC000-memory.dmp

  • Size

    1.4MB

  • MD5

    4ca8369e5b0a360816b35643dbd89eca

  • SHA1

    0c1b5cf415eabc38bbd26d06f57206100444ad28

  • SHA256

    2b0c02e7c52dfeaae3efe87090474c5b36716f7d7d114c7c322211a8be13dfe3

  • SHA512

    a1d45bfb4ddae57598fa75cd29a4682aeae9a96e8869417675f2e5fb89cd9647f69f2d51659e2eb90e53511c67083482ba09f1e8c387aa0b15db56329be85c69

  • SSDEEP

    3072:I6f3HOMPSn2Ei2OcoX3/cULFGTSz4JqYzHqxgGTKIw:IO7K2Ei2OtPvkSz4JqYzLGTVw

Score
10/10
ratwarzonerat

Malware Config

Extracted

Family

warzonerat

C2

155.94.150.100:6473

Signatures

  • Warzone RAT payload 1 IoCs
    rat
  • Warzonerat family
    warzonerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2036-54-0x0000000000860000-0x00000000009BC000-memory.dmp
    .dll windows x86


    Headers

    Sections