babylonrat | f217ef2073103275063ea594fcb775a023bb3c057593c3ebb315b798f635ae1e | Triage

Submit
Reports

Overview

overview

Static

static

babylon.exe

windows7-x64

babylon.exe

windows10-2004-x64

Sharing

General

Target

babylon.exe
Size

370KB
Sample

231106-hfpk6ahe61
MD5

8ad907b86f83e876957c78e5d3a30de1
SHA1

5a436c1076d3a03711d5729f324364c2e15b3ad1
SHA256

f217ef2073103275063ea594fcb775a023bb3c057593c3ebb315b798f635ae1e
SHA512

ccbc1e8cff4f6e867456cc4d80556b839fc890b80319132e69b0f986b1dd8f1e2c167567b48322da27a8577a2077d8e58b78358b7ea9f0c0d5b6cf1d651367c1
SSDEEP

6144:CL1ncfWwN0oc35jeRh8Xqfy/Ka1OHAH0tMrKCTEABG+Z9d3cQT/9nR4Ioy19F:CLdcfxaeM6fy/KaVUtgKkTZ73coNRJF

Score

10^/10

babylonrat trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

babylon.exe

Resource

win7-20231023-en

babylonrat trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

babylon.exe

Resource

win10v2004-20231020-en

babylonrat trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

babylonrat

C2

206.189.20.127

Targets

- Target
  
  babylon.exe
- Size
  
  370KB
- MD5
  
  8ad907b86f83e876957c78e5d3a30de1
- SHA1
  
  5a436c1076d3a03711d5729f324364c2e15b3ad1
- SHA256
  
  f217ef2073103275063ea594fcb775a023bb3c057593c3ebb315b798f635ae1e
- SHA512
  
  ccbc1e8cff4f6e867456cc4d80556b839fc890b80319132e69b0f986b1dd8f1e2c167567b48322da27a8577a2077d8e58b78358b7ea9f0c0d5b6cf1d651367c1
- SSDEEP
  
  6144:CL1ncfWwN0oc35jeRh8Xqfy/Ka1OHAH0tMrKCTEABG+Z9d3cQT/9nR4Ioy19F:CLdcfxaeM6fy/KaVUtgKkTZ73coNRJF
Score

10^/10

babylonrat trojan upx
- Babylon RAT
  Babylon RAT is remote access trojan written in C++.
  trojan babylonrat
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

babylonrattrojanupx

behavioral2

babylonrattrojanupx

© 2018-2024

Terms | Privacy