Overview

overview

10

Static

static

3

c19dcc4a70...d2.exe

windows7-x64

10

c19dcc4a70...d2.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c19dcc4a7009930684caebb657f3a1d2

  • Size

    172KB

  • Sample

    240311-z28dtsee3x

  • MD5

    c19dcc4a7009930684caebb657f3a1d2

  • SHA1

    1ba6e37f411b707feaf517500c29a1911462f1b5

  • SHA256

    fefc97fd37d3b1cadb90b3da0b55dbc4f1d75611c93f78e776d91aaa83af3e98

  • SHA512

    68e53bd51642b7d94da966d8c7f07b88b89dbd46b73a322eaba3fb0c136b2e5181b675edeb46856212a987b64cf99c5ba81b6236b4f35fc0612b35b817259bac

  • SSDEEP

    3072:iDHo4+7gVz2DLYGKUrqY6uxSBfPqjm6dvOLH7ud7rnoC17ymC3gEOaq5:ZjqtUrH66SUj9hk7mrX1jYgEOaq

Score
10/10
warzoneratinfostealerrat

Malware Config

Targets

    • Target

      c19dcc4a7009930684caebb657f3a1d2

    • Size

      172KB

    • MD5

      c19dcc4a7009930684caebb657f3a1d2

    • SHA1

      1ba6e37f411b707feaf517500c29a1911462f1b5

    • SHA256

      fefc97fd37d3b1cadb90b3da0b55dbc4f1d75611c93f78e776d91aaa83af3e98

    • SHA512

      68e53bd51642b7d94da966d8c7f07b88b89dbd46b73a322eaba3fb0c136b2e5181b675edeb46856212a987b64cf99c5ba81b6236b4f35fc0612b35b817259bac

    • SSDEEP

      3072:iDHo4+7gVz2DLYGKUrqY6uxSBfPqjm6dvOLH7ud7rnoC17ymC3gEOaq5:ZjqtUrH66SUj9hk7mrX1jYgEOaq

    Score
    10/10
    warzoneratinfostealerrat

    • WarzoneRat, AveMaria

      WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.

      ratinfostealerwarzonerat

    • Core1 .NET packer

      Detects packer/loader used by .NET malware.

    • Warzone RAT payload

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks