Overview

overview

10

Static

static

10

704-54-0x0...ry.dll

windows7-x64

1

704-54-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    704-54-0x0000000000910000-0x0000000000A6D000-memory.dmp

  • Size

    1.4MB

  • MD5

    056a61fbfa7a7f94de15043d71215014

  • SHA1

    6f2ca4d4e48e796a85561915e8f76160e37cd1a4

  • SHA256

    09f620386b83ccbeb70d834fa4527c329ea7f5054523a8b3ceeb5dd86a5dd691

  • SHA512

    46fa4f9f833fca4dfd5e2f87d2027344c0c77b53690eb01f67232df9b6fa8dceb90d07b04213b3fc9d8f3cd7065887d89ef00c425d51b9b31d4be1a16c1d2424

  • SSDEEP

    3072:VKkqEaYVp2OjB6SOqlXV9VLOPI4vMWwx2iF9fuszYzHfG0ZIw:VK+28hJZLOPxwJfueYz/G0uw

Score
10/10
ratwarzonerat

Malware Config

Extracted

Family

warzonerat

C2

173.212.207.73:5200

Signatures

  • Warzone RAT payload 1 IoCs
    rat
  • Warzonerat family
    warzonerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 704-54-0x0000000000910000-0x0000000000A6D000-memory.dmp
    .dll windows x86


    Headers

    Sections