bitrat | c3e53e28198dfe92caa7b46355f543dd18c0353ef42f2e28862682a79e863735 | Triage

Submit
Reports

Overview

overview

Static

static

3

122341d7b4...d8.exe

windows7-x64

122341d7b4...d8.exe

windows10-2004-x64

Sharing

General

Target

122341d7b40c0ee5ad9eb4b5e56a5ed8
Size

2.2MB
Sample

231230-jav2esbben
MD5

122341d7b40c0ee5ad9eb4b5e56a5ed8
SHA1

c1c929d53da34787cfd8381b3ea6a3c2c1ba1a33
SHA256

c3e53e28198dfe92caa7b46355f543dd18c0353ef42f2e28862682a79e863735
SHA512

50051b14cd8cd755fe68bbce63050c9db5bb0769ef75025ea634785fdc5af77b307b955f84381d6eb7dc698be406581ac5af2165666b9c0e42e6519765c3d5af
SSDEEP

49152:IODX0Ctbcjd/r7bDDjeDEngIJdaaT2imnlhLEyeHtwuSZNIQ:Ttb2HD1ngOTSnlBpCSuSZ

Score

10^/10

bitrat zgrat rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

122341d7b40c0ee5ad9eb4b5e56a5ed8.exe

Resource

win7-20231215-en

bitrat zgrat rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

122341d7b40c0ee5ad9eb4b5e56a5ed8.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

bitrat

Version

1.38

C2

firewall.publicvm.com:25874

Attributes

communication_password
a20ba4fb329f7dc66c0dd3562e9f9984
tor_process
tor

Targets

- Target
  
  122341d7b40c0ee5ad9eb4b5e56a5ed8
- Size
  
  2.2MB
- MD5
  
  122341d7b40c0ee5ad9eb4b5e56a5ed8
- SHA1
  
  c1c929d53da34787cfd8381b3ea6a3c2c1ba1a33
- SHA256
  
  c3e53e28198dfe92caa7b46355f543dd18c0353ef42f2e28862682a79e863735
- SHA512
  
  50051b14cd8cd755fe68bbce63050c9db5bb0769ef75025ea634785fdc5af77b307b955f84381d6eb7dc698be406581ac5af2165666b9c0e42e6519765c3d5af
- SSDEEP
  
  49152:IODX0Ctbcjd/r7bDDjeDEngIJdaaT2imnlhLEyeHtwuSZNIQ:Ttb2HD1ngOTSnlBpCSuSZ
Score

10^/10

bitrat zgrat rat trojan
- BitRAT
  BitRAT is a remote access tool written in C++ and uses leaked source code from other families.
  trojan bitrat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

bitratzgratrattrojan

behavioral2

© 2018-2024

Terms | Privacy