vanillarat | c9dcd0ef1aeb4a2f8bbb4ff93f0f523bee99a739c7e0ad8f21c70aa368204f41 | Triage

Submit
Reports

Overview

overview

Static

static

hi.exe

windows10-2004-x64

Sharing

General

Target

hi.exe
Size

114KB
Sample

230722-mctsxsaf26
MD5

8a2cc75f1a0196bc659384fecc0fed8a
SHA1

2e5b7de6a0977da0ef29bc5855e65e8deca4e51c
SHA256

c9dcd0ef1aeb4a2f8bbb4ff93f0f523bee99a739c7e0ad8f21c70aa368204f41
SHA512

5a5b5cde00bf0f105a04cb60b1baae2bc8c82225e447e34df87fd2789a6acddb1757f699933e78938ca6fbcce98400f7ae1c02907990198d2fe39004b17397bf
SSDEEP

3072:gJZKnPE2YyJzELtyTFyYeY8lNgoiJ+sX8HFvytbmNM:gJZKBI0FyYeY4eoiJ+sCFvR

Score

10^/10

vanillarat rat

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

hi.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

5 signatures

1800 seconds

Malware Config

Targets

- Target
  
  hi.exe
- Size
  
  114KB
- MD5
  
  8a2cc75f1a0196bc659384fecc0fed8a
- SHA1
  
  2e5b7de6a0977da0ef29bc5855e65e8deca4e51c
- SHA256
  
  c9dcd0ef1aeb4a2f8bbb4ff93f0f523bee99a739c7e0ad8f21c70aa368204f41
- SHA512
  
  5a5b5cde00bf0f105a04cb60b1baae2bc8c82225e447e34df87fd2789a6acddb1757f699933e78938ca6fbcce98400f7ae1c02907990198d2fe39004b17397bf
- SSDEEP
  
  3072:gJZKnPE2YyJzELtyTFyYeY8lNgoiJ+sX8HFvytbmNM:gJZKBI0FyYeY4eoiJ+sCFvR
Score

10^/10

vanillarat rat
- VanillaRat
  VanillaRat is an advanced remote administration tool coded in C#.
  rat vanillarat
- Vanilla Rat payload
  rat
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy