Extracted

• • Target

    743744c130f46095b187c8793f53c126

  • Size

    761KB

  • MD5

    743744c130f46095b187c8793f53c126

  • SHA1

    218a25fea52fb236aedb6afc32c377028c4d8fe5

  • SHA256

    5bc9f5fd6836473b7e1d9fd66cde0f1e03fec54dfebec3f54a0d3cc9a342fa1e

  • SHA512

    2f1b63645d97e0bb98133318c07c974cf1f5773af896a2368fad9020705d89390920dc627bf54c18fe32043aec86691f1d642c35e3bd36d9b2952b4b85f55321

  • SSDEEP

    12288:nRpzc3VfVeg3HCEHL72C9mIzUewRTCFMKQ26BdTxbWig1GO4l0tC2+6hMvCO2Ps9:nErHLyC9mIzUewRTCFvQ26TlWig1w2tl

  Score

  10^/10

  warzoneratinfostealerrat

  • WarzoneRat, AveMaria

    WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.

    ratinfostealerwarzonerat

  • Warzone RAT payload

    rat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2