bitrat | 2283c3c722db4373f466fe65a5667c3d911ceacd7f09a6b1f887ef8b54099a72 | Triage

Submit
Reports

Overview

overview

Static

static

3

1e2c754ee2...f1.exe

windows7-x64

9

1e2c754ee2...f1.exe

windows10-2004-x64

Sharing

General

Target

1e2c754ee22f34dcbfc9c165f04966f1
Size

4.0MB
Sample

231225-a6dycadebr
MD5

1e2c754ee22f34dcbfc9c165f04966f1
SHA1

799cee300f36ac4914814607eb3737dc3bc6aacc
SHA256

2283c3c722db4373f466fe65a5667c3d911ceacd7f09a6b1f887ef8b54099a72
SHA512

33ab543e9e640fa830c7497938b1ab7a29f5555cad827ca7aeecf9c272a6eb09c1941ac53ca2cbd1249c65060fe4f50261d523eff8d67b9323201e780187143f
SSDEEP

98304:UJrtkzuy5GB2otTJTKfbcS8KgW6Oo4agSzX/Pb:UBtk82ATJTKQ3KsnX/

Score

10^/10

bitrat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1e2c754ee22f34dcbfc9c165f04966f1.exe

Resource

win7-20231215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e2c754ee22f34dcbfc9c165f04966f1.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

snkno.duckdns.org:43413

Attributes

communication_password
827ccb0eea8a706c4c34a16891f84e7b
tor_process
tor

Targets

- Target
  
  1e2c754ee22f34dcbfc9c165f04966f1
- Size
  
  4.0MB
- MD5
  
  1e2c754ee22f34dcbfc9c165f04966f1
- SHA1
  
  799cee300f36ac4914814607eb3737dc3bc6aacc
- SHA256
  
  2283c3c722db4373f466fe65a5667c3d911ceacd7f09a6b1f887ef8b54099a72
- SHA512
  
  33ab543e9e640fa830c7497938b1ab7a29f5555cad827ca7aeecf9c272a6eb09c1941ac53ca2cbd1249c65060fe4f50261d523eff8d67b9323201e780187143f
- SSDEEP
  
  98304:UJrtkzuy5GB2otTJTKfbcS8KgW6Oo4agSzX/Pb:UBtk82ATJTKQ3KsnX/
Score

10^/10

bitrat trojan
- BitRAT
  BitRAT is a remote access tool written in C++ and uses leaked source code from other families.
  trojan bitrat
- CustAttr .NET packer
  Detects CustAttr .NET packer in memory.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy