Overview

overview

10

Static

static

3

bac03e7065...e0.exe

windows7-x64

10

bac03e7065...e0.exe

windows10-2004-x64

10

Resubmissions

15/03/2024, 08:35 UTC

240315-khfr5scb41 10

08/03/2024, 06:28 UTC

240308-g8rqjsac9y 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bac03e7065835ff2e82f01801740a5e0

  • Size

    1.3MB

  • Sample

    240315-khfr5scb41

  • MD5

    bac03e7065835ff2e82f01801740a5e0

  • SHA1

    2bf512bc4f3d6f1bece40073ddedadad65264166

  • SHA256

    04c031ecbff301c0c7c55c8c9352dea457370b221c314710e2e94575b8caf45b

  • SHA512

    a2ee185a51f1ee7d53a622013ccb9f47c9893f304dce3413d53399ad3d757ed0dd7782f8dbe3f60c8f19c9f69fd40fc8fbb3b59aa09279871a3ee50878f50d97

  • SSDEEP

    24576:r4VrnNUc9BJxetHXQf/R4GdfEzh7B905zfXKkfz+bVILjMxuY:cFNlYXI/R4GduL05zfXdfgVILY1

Score
10/10
bruteratelbackdoor

Malware Config

Targets

    • Target

      bac03e7065835ff2e82f01801740a5e0

    • Size

      1.3MB

    • MD5

      bac03e7065835ff2e82f01801740a5e0

    • SHA1

      2bf512bc4f3d6f1bece40073ddedadad65264166

    • SHA256

      04c031ecbff301c0c7c55c8c9352dea457370b221c314710e2e94575b8caf45b

    • SHA512

      a2ee185a51f1ee7d53a622013ccb9f47c9893f304dce3413d53399ad3d757ed0dd7782f8dbe3f60c8f19c9f69fd40fc8fbb3b59aa09279871a3ee50878f50d97

    • SSDEEP

      24576:r4VrnNUc9BJxetHXQf/R4GdfEzh7B905zfXKkfz+bVILjMxuY:cFNlYXI/R4GduL05zfXdfgVILY1

    Score
    10/10
    bruteratelbackdoor

    • Brute Ratel C4

      A customized command and control framework for red teaming and adversary simulation.

      backdoorbruteratel

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.