Extracted

• • Target

    804b8999e3e6d9a7dc4d091387335049

  • Size

    2.3MB

  • MD5

    804b8999e3e6d9a7dc4d091387335049

  • SHA1

    afaa02ac351e07f8816aaa7ee17e35294d9d343a

  • SHA256

    b3c167f4d9b549c00a67e8dcdfc537bc91995b805bb2dcabf3af0979e597dae9

  • SHA512

    4d55ca7744f63ad61afc18cea871a36ee7fe47a3051a77da23d8560e63e2e9bb5bbb15bb937470a0064ad41ebba9454660a256b018c705eb7260ece0bf386918

  • SSDEEP

    49152:bCpBKTd2Z2tZkQmMN3KKtDQiFjpt2HOO9J3vhsfLnB4:bC3KTd+tMN37tUiFjLEOOnvh8N4

  Score

  10^/10

  bitratpersistencetrojan

  • BitRAT

    BitRAT is a remote access tool written in C++ and uses leaked source code from other families.

    trojanbitrat

  • Modifies WinLogon for persistence

    persistence
  behavioral1behavioral2