Overview

overview

7

Static

static

7

Accord.Vid...64.dll

windows10-2004-x64

1

Accord.Video.dll

windows10-2004-x64

1

Accord.dll

windows10-2004-x64

1

ChangeLog.html

windows10-2004-x64

6

CraxsRat.exe.xml

windows10-2004-x64

1

CraxsRats v4.9.5.exe

windows10-2004-x64

1

DrakeUI.Framework.dll

windows10-2004-x64

1

GeoIPCitys.dll

windows10-2004-x64

1

LiveCharts.MAPS.dll

windows10-2004-x64

1

LiveCharts...ms.dll

windows10-2004-x64

1

LiveCharts.Wpf.dll

windows10-2004-x64

1

LiveCharts.dll

windows10-2004-x64

1

LiveCharts...es.dll

windows10-2004-x64

3

LiveChartsRegion.dll

windows10-2004-x64

3

MetroSet UI.dll

windows10-2004-x64

1

NAudio.dll

windows10-2004-x64

1

System.IO....le.dll

windows10-2004-x64

1

System.IO....on.dll

windows10-2004-x64

1

Vip.Notification.dll

windows10-2004-x64

1

WinMM.Net.dll

windows10-2004-x64

1

avcodec-57.dll

windows10-2004-x64

3

avdevice-57.dll

windows10-2004-x64

3

avfilter-6.dll

windows10-2004-x64

1

avformat-57.dll

windows10-2004-x64

3

avutil-55.dll

windows10-2004-x64

3

postproc-54.dll

windows10-2004-x64

1

swresample-2.dll

windows10-2004-x64

1

swscale-4.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    CraxsRats v4.9.5.zip

  • Size

    64.9MB

  • MD5

    a04a2aaf0028f606d93cd9f227d50c37

  • SHA1

    f809fa66ffb34ce81f12cce102b8d837b87022ae

  • SHA256

    88172eda2f9367613bfb7469a175fdfdf0c8084f2dbd7a7a4e1fe69677051df2

  • SHA512

    46563b5374075a83029bd3d90ed5e6aacaa592d0db6e624090b088bf6f36113177f45b7c145b03bdacdfbfc577d05ce94adc2f1fbfd40eb26fa17835a0f2ab0e

  • SSDEEP

    1572864:TXteW9rl1rkgdU6MgvJeKVapvyRLbsT5WEMBkckm:Jv9xWgnMgReKVqwMIt

Score
7/10
agilenet

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 2 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet
  • Unsigned PE 25 IoCs

    Checks for missing Authenticode signature.

Files

  • CraxsRats v4.9.5.zip
    .zip
  • Accord.Video.FFMPEG.x64.dll
    .dll windows x64

    9890e10c1b899c00509127a783a28c50


    Headers

    Imports

    Sections

  • Accord.Video.FFMPEG.x64.xml
    .xml .vbs
  • Accord.Video.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Accord.Video.xml
    .xml .vbs
  • Accord.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Accord.dll.config
  • Accord.xml
    .xml
  • ChangeLog.html
    .html
  • CraxsRat.exe.config
    .xml
  • CraxsRat.pdb
  • CraxsRat.xml
  • CraxsRats v4.9.5.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • DrakeUI.Framework.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Errorlogs.txt
  • GeoIPCitys.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • License.xml
  • LiveCharts.MAPS.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • LiveCharts.WinForms.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • LiveCharts.WinForms.pdb
  • LiveCharts.WinForms.xml
    .xml
  • LiveCharts.Wpf.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • LiveCharts.Wpf.pdb
  • LiveCharts.Wpf.xml
    .xml
  • LiveCharts.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • LiveCharts.pdb
  • LiveCharts.xml
    .xml
  • LiveChartsCountries.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Exports

    Sections

  • LiveChartsRegion.dll
    .dll windows x64

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Exports

    Sections

  • MetroSet UI.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • NAudio.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • System.IO.Compression.ZipFile.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • System.IO.Compression.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Vip.Notification.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WinMM.Net.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • World.xml
  • avcodec-57.dll
    .dll windows x64

    07ebb2e4a85e7279af867aeba248f826


    Headers

    Imports

    Exports

    Sections

  • avdevice-57.dll
    .dll windows x64

    74a3a90b5539069c4beae5c1ff67eeeb


    Headers

    Imports

    Exports

    Sections

  • avfilter-6.dll
    .dll windows x64

    cc82914ed4060a17f274315a75957af2


    Headers

    Imports

    Exports

    Sections

  • avformat-57.dll
    .dll windows x64

    dcdaea73f83fa4f3ccf4a73a42eca2d4


    Headers

    Imports

    Exports

    Sections

  • avutil-55.dll
    .dll windows x64

    e241b1afb3acc147e63f8a48c1220fe7


    Headers

    Imports

    Exports

    Sections

  • postproc-54.dll
    .dll windows x64

    7bb87fee6154df19a72c97736e5d0651


    Headers

    Imports

    Exports

    Sections

  • swresample-2.dll
    .dll windows x64

    f06c43747311dda7e72aeaac232e98cd


    Headers

    Imports

    Exports

    Sections

  • swscale-4.dll
    .dll windows x64

    4bccf1a398f2c0396c724833732fcf53


    Headers

    Imports

    Exports

    Sections