Overview

overview

10

Static

static

10

VenomRAT_v...us.dll

windows10-1703-x64

1

VenomRAT_v...at.dll

windows10-1703-x64

1

VenomRAT_v...ns.dll

windows10-1703-x64

1

VenomRAT_v...er.dll

windows10-1703-x64

1

VenomRAT_v...ry.dll

windows10-1703-x64

1

VenomRAT_v...it.dll

windows10-1703-x64

1

VenomRAT_v...ra.dll

windows10-1703-x64

1

VenomRAT_v...op.dll

windows10-1703-x64

1

VenomRAT_v...xy.dll

windows10-1703-x64

1

VenomRAT_v...le.dll

windows10-1703-x64

1

VenomRAT_v...ry.dll

windows10-1703-x64

1

VenomRAT_v...er.dll

windows10-1703-x64

1

VenomRAT_v...nc.exe

windows10-1703-x64

1

VenomRAT_v...op.dll

windows10-1703-x64

1

VenomRAT_v...op.dll

windows10-1703-x64

3

VenomRAT_v...cs.dll

windows10-1703-x64

1

VenomRAT_v...es.ps1

windows10-1703-x64

3

VenomRAT_v...es.ps1

windows10-1703-x64

3

VenomRAT_v...ny.exe

windows10-1703-x64

10

VenomRAT_v...64.exe

windows10-1703-x64

10

VenomRAT_v...86.exe

windows10-1703-x64

10

VenomRAT_v...on.dll

windows10-1703-x64

1

VenomRAT_v...ls.dll

windows10-1703-x64

1

VenomRAT_v...er.exe

windows10-1703-x64

7

VenomRAT_v...ib.dll

windows10-1703-x64

1

VenomRAT_v...Ip.dll

windows10-1703-x64

1

VenomRAT_v...ib.dll

windows10-1703-x64

1

VenomRAT_v...in.url

windows10-1703-x64

1

VenomRAT_v...ng.url

windows10-1703-x64

1

VenomRAT_v...rd.dll

windows10-1703-x64

1

VenomRAT_v...re.dll

windows10-1703-x64

1

VenomRAT_v...et.dll

windows10-1703-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VenomRAT_v6.0.3.rar

  • Size

    92.3MB

  • Sample

    240516-2faxjsbg73

  • MD5

    7cbabf71dd915f44b67f1765e805e5ab

  • SHA1

    bc44d2fd089fc818824a5eb8f3c4310636dc2b81

  • SHA256

    668bf9ed54120899b86b21a8aa1df1075937b8c05cfca52817746b6e418e2006

  • SHA512

    9a3171a9c0f813b2c228348d2d4a3b94457578a6d1d5f80d7780fffcc3d67731b49b2cfe38f6ba4498203f1551e7c1cbc7b60d2ccc4dd8412943bc634a870509

  • SSDEEP

    1572864:Ox40amHGeCj7VmyotHgaspW71f6xJgOBWWqwGaoAaCAOEFHiWlMvbRje/L20J1XP:raCj7VJoBgaMW75KC1Wq0TUORWudA203

Score
10/10
asyncratstormkittyexecutionrat

Malware Config

Targets

    • Target

      VenomRAT_v6.0.3/Plugins/Miscellaneous.dll

    • Size

      82KB

    • MD5

      d7d72ad5575c1b8ad9b6c170ca2ba53b

    • SHA1

      51e0d8f952f22a29f92c2c37dacebc8b46e9cc4e

    • SHA256

      329937d550d1f28c77dc26c45b97dd701565a58d1f60f7e3a35790c4cf87b9d7

    • SHA512

      4838176ee94e1d7643eecbae46dd57bb7d8c264ec127ff0b4443186893c17854158d1576645bf2a7d5bff3f2cb5e91a5c5242e5f236b6ed8c2e18f1ecaf2d1e5

    • SSDEEP

      1536:UfcvW8lMJ36WbolgVe5JnUs3O4PyamuD5KLbyywITRZcUnoKk:Ufcv4qWcqVep3O4Pya/sbyywITRZcUn8

    Score
    1/10
    behavioral1

    • Target

      VenomRAT_v6.0.3/Plugins/Netstat.dll

    • Size

      25KB

    • MD5

      016439dfdeab850df3845ec000f48eeb

    • SHA1

      84d88f7ddd216365aae2f44806caf1f52427309d

    • SHA256

      e06ec5cfd60b3312796135820cba9d230a780aef97fdc0f8da6207e8c8e5e000

    • SHA512

      c671c70f25883e5cb25266628947f3c04d7054fb916ac72c39a759b4ec15e3b51008604b3554779a8dd25ab318ae369980e9a5cead22fa88151350cf153e32c0

    • SSDEEP

      384:qEPYiWmPHmWSNnneMHPwfssC0odsehGmhzReDmYu/BRLJ+0ZB9iMNUVIt+AH:qZiTG5Nn14pAaqHFB9iDo+AH

    Score
    1/10
    behavioral2

    • Target

      VenomRAT_v6.0.3/Plugins/Options.dll

    • Size

      378KB

    • MD5

      6d598f254cd76db5b465d8a5d6244c96

    • SHA1

      a8b716c7bdab3b5ddba5f06d66462cde2654d961

    • SHA256

      759453183cb7b6e64ff834b3f6643fd5e8b8f2ee826d662871ad417097bc16af

    • SHA512

      8de61efac210139fe8839be69772ffdb83e8913ed26c3fbc93270f3ec3270b1ba392d5612416459aa7563957f663669248b15a773dbe6696746827d0b8076597

    • SSDEEP

      6144:wLEsb4D05mkOnVN6N68fKk9/FiKRcztasuG/JrI7sitpwoTa:NgA16w21rexdiG

    Score
    1/10
    behavioral3

    • Target

      VenomRAT_v6.0.3/Plugins/ProcessManager.dll

    • Size

      25KB

    • MD5

      85ad68e55dfe03e679b650e2a689b905

    • SHA1

      172c79f1006223e130e63ff7370d9dda01c3a87f

    • SHA256

      d664a79caa45f63a3729c25859eeaf11d7692866c9438316ff3443b754c9d86c

    • SHA512

      672cc61423b79b96cfb97ca83ec9f379666fbb9003c6105d170b89d7da85da443d064624421de4da6112746d240d709f7af7a696b64be8fafaaf83c8402ea0df

    • SSDEEP

      384:bL3RGwZcsum1T39T9JZNAgSkguRvhCE/dsehGqG6ZDWl9UZ5QDB/BRiqFujdZ8Uh:bL3AJQ1L9BKSvhjXO45Z8UXPd/JBD

    Score
    1/10
    behavioral4

    • Target

      VenomRAT_v6.0.3/Plugins/Recovery.dll

    • Size

      1.1MB

    • MD5

      cdb0f455ed9d8243479d84930016b594

    • SHA1

      e49842ddd267c8f0731090f56c16878564a1c196

    • SHA256

      bea19e2dece602ced1d3df8c825a993f3d412c2a4d4d87eaa39f44ba4fb39e82

    • SHA512

      ba5bab867d6ae8a20c9c20f9203a3cb348a0cfa411a2f03b05c698b4b7b569b31a037b72a285c2725330a10ab02532dcdb904941531839f03ed01a941f457825

    • SSDEEP

      12288:oGdphbw/ZHENa9L3ofky5J0wh2vgj2FNFfcaFeFOFwcGF6cmFWc0FWc8cIcKcUFq:iJY8vmRWO/vjyK/Go9aSRmT

    Score
    1/10
    behavioral5

    • Target

      VenomRAT_v6.0.3/Plugins/Regedit.dll

    • Size

      280KB

    • MD5

      1311db472a7d6214c081d1570ce26cec

    • SHA1

      97c69429b40f5413092522a8b9277e89ee9ad0d7

    • SHA256

      c9db48c701d11ccea315e72da8482e1b00ea5472c1235f6b4e21bfff73b2e941

    • SHA512

      2e7c7e9403b4e93f5047a08b5b9f0d017884840d0473f9def1b0ec23173b7dea697a4a02ed6b3e8e09a3129151385b9b3ec5c2da8793be908151f125e7114deb

    • SSDEEP

      3072:tCf3TYGASJcuPma/XzwfDo6I0oWFKgboh3xTBAk0rklCGl9O7Y7T:Yf0CVMZosKJh3l

    Score
    1/10
    behavioral6

    • Target

      VenomRAT_v6.0.3/Plugins/RemoteCamera.dll

    • Size

      107KB

    • MD5

      0c856c12a57ec760d42beb7c7aa9f654

    • SHA1

      fb2344188d90ae256782cdf3814e8cb2d82353bb

    • SHA256

      083b7be903110cbe07e367df7f1ccf0283fb25a3561969dadca319c5ee580865

    • SHA512

      cecea1ae8a904d54a9841ba043708668bf98b904a7b1e5ca096efed04f2e1e88b713e2f43b5021033c74481e3052b641553f5bd1df2898c3feb26d43adc457be

    • SSDEEP

      3072:OJMMGGkkad8SHHhh//dIC44CCwwOCoYWJsCOtuUqIpQkodrY6Jj0au:cMMGGkkatHHhh//dIC44CCwwOCmJsII/

    Score
    1/10
    behavioral7

    • Target

      VenomRAT_v6.0.3/Plugins/RemoteDesktop.dll

    • Size

      34KB

    • MD5

      7ce57602a56e0c140569e80e6bdca112

    • SHA1

      66efe692b9a866c29eafd5f49f9b87ddf30e249c

    • SHA256

      82bcf176d913f0776418319f42dc5d04ed32e1fa7228cc3802d41e62b5147256

    • SHA512

      5b422783c8971a8ccaf4fcab6fc5e3f494bc74d575b57d209c5c826f8438a73480bbe178d13cc7ce66036ac9b5fd7b033d8f811436e7f88a9b49785e343ac8fd

    • SSDEEP

      768:genZgEDOUu72ffjm9k0T0dDxZDlOxmVfl:ge4+fCRT8DxZhOkv

    Score
    1/10
    behavioral8

    • Target

      VenomRAT_v6.0.3/Plugins/ReverseProxy.dll

    • Size

      553KB

    • MD5

      d560dc1d671c9f63341eaa2e82e8da3e

    • SHA1

      f4a241eb751c8bedb329db709addc799481d7347

    • SHA256

      839728b1c09a00907e3efc67de957600c59d6a03afc8f8880160e9ede8ed93a0

    • SHA512

      1f3730857c918ab8aabb8beeca48d1be2db05d78f105f1fcbd156aff04068492d75b995af92f639e5944859f73a8c6aa9302749f9d0c361f0523b25f69b433bc

    • SSDEEP

      6144:aXfUJwJRSekrGXdBr/kRCUkAk7mt4Jx0outpvikG0WbuNIlTV0zANjLJ6N0zTdIa:yuqhwNUxOWdzvN1oi9tcUkUnj56CfAJ

    Score
    1/10
    behavioral9

    • Target

      VenomRAT_v6.0.3/Plugins/SendFile.dll

    • Size

      26KB

    • MD5

      7b93b63734901d7a5c40e06c6706c1e7

    • SHA1

      3c534fbfade38a1f1b90ce463cdef404c1330234

    • SHA256

      54c537118656e6c56c55e5894d5798cf4ed495ba7992b46050649ff660dfe7d5

    • SHA512

      7711ea2c15dcaa0503e5fe92ee9f03af32d8ed37dc5ea4a40c46e77ab65ecf0321dad1ad11b73845d7dc94ca6f261769d4dafd538abb4be0d70a0a2153fb4a32

    • SSDEEP

      384:mZD+IRbL8m9j4lzfUVugdsehG8QThiU7eugRZLBRphrcnlTaOCq3zqn+D9fnB:K5939j4lLGugttvprQndCA3RvB

    Score
    1/10
    behavioral10

    • Target

      VenomRAT_v6.0.3/Plugins/SendMemory.dll

    • Size

      28KB

    • MD5

      afb9b0c9bb59fb128406ae3f9fb71c78

    • SHA1

      820c24c6a252639f6d92130a4a6c83db53f8f3e7

    • SHA256

      d179e1d3e1f46c85bb4a03e9c9069e8b529999e776b7b12c2d4a47f622535f8c

    • SHA512

      23102da3a25695c45a20f6bcf8ae82d58b00a92c359db9de5ff1584775fc521ef46ee9468032cd771afd87c035e2181c3d15072de1738ea0665e39294c638f80

    • SSDEEP

      768:SDFB3bs7TngUza7xesycCcB9D4WEI7I+HmMn:SDFB3bl7CcZBZ4WQ+Pn

    Score
    1/10
    behavioral11

    • Target

      VenomRAT_v6.0.3/Plugins/Stealer.dll

    • Size

      1.2MB

    • MD5

      148df73fc5c660433a2f879623e20200

    • SHA1

      37876b040a553b27cb8adba4e6d36a578f4aa6f8

    • SHA256

      b68d9d96af261cd1103255a35838e4d8112598f1a15d860c7b932ee098ee143c

    • SHA512

      17434fa00756bbed7c0a426580f771e59d7f4e7ae0858f1daed0c9b38cfe0adac7f1c52bbf664c51cf4c1b1bd62a8e3e981cc2585fb26fde278e3101401483a3

    • SSDEEP

      24576:gatZD2Q9NXw2/wPOjdGxYjm0h7u7FIwgk5jfIgW5kA24:gatRTq24GjdGSjmUzitbv

    Score
    1/10
    behavioral12

    • Target

      VenomRAT_v6.0.3/Plugins/hvnc.exe

    • Size

      36KB

    • MD5

      fc73d7d3f06595cee03b6d5c8d7f1288

    • SHA1

      295e40e9b723ca96bbfcd7e2e9f4c57f9cfe31fb

    • SHA256

      995eda42ca6298269c8ce9e6c6fe857704ceec211911bae8379f8e905eae6d32

    • SHA512

      ad99172ca8c444b8c8473522d8c40229426b5cf9c7db49cd42d92804bc3d197ca9ca947fe8d77ec9abbd24cc386c7fa40128dd3b724d26a235d879fdf9c60fc0

    • SSDEEP

      768:fB92a2NJWV2D2i/BLJUxGAPqpWupz/CTRtYnhbnpwgCWPL2Pi:7fPqAupz/SehbigCWjl

    Score
    1/10
    behavioral13

    • Target

      VenomRAT_v6.0.3/Plugins/x64/SQLite.Interop.dll

    • Size

      1.7MB

    • MD5

      c2d9e689c9b7dbfbd6266430fcce1add

    • SHA1

      1ce680f48d19ab31f4af39c261451804a2858a11

    • SHA256

      7bf956ba8edbc7358398707afddafa3acfcb212796f4169130d7cfa557653e67

    • SHA512

      24867f191cb91e1a6dc7dbcfba02881dcb9bf49166315508bcfd331f51495a536431d33b5444fcfd270adf6def4691301c17c328cd8ef779819429437f590e08

    • SSDEEP

      24576:DLTtHBGpRMWBny2uuf/PWEkOgwCyWUMZ4Gt+bQ6QjwUJFN:nGpi8d/vZLxjnQM

    Score
    1/10
    behavioral14

    • Target

      VenomRAT_v6.0.3/Plugins/x86/SQLite.Interop.dll

    • Size

      1.3MB

    • MD5

      730e57d00a8699352cfb15ec1159afd0

    • SHA1

      3ce30190d1f64dcb4572f0dd0efc065d58407dd9

    • SHA256

      29f4c07e9c5b265976967d8afe435b0e74bb6169c20090d856fbcc42a4bf48f0

    • SHA512

      b5bbc861884d4ce0a0846688d493f7a84b97076849ab81fdf3631a525dd99a12c7156a9d43b3019f91a912ab102669b651c5f6c2967142c29d2b41e76aefd3df

    • SSDEEP

      24576:mf/6v6+dsbLxvHMX3zaW8Z2VCGt1mGkFadPRjp5506GygUI:mn6UbEB8Z2cGRXDg/

    Score
    3/10
    behavioral15

    • Target

      VenomRAT_v6.0.3/SMDiagnostics.dll

    • Size

      118KB

    • MD5

      2612a0586acb1b3e7b5c13aad79504fe

    • SHA1

      8a8ac9ce4b3a174f46b69fd16bad04c5f3044e24

    • SHA256

      e7c76c52a3e9f751ed6ed9c9231e35228a636ebd68726241a843f31c5a41ec0c

    • SHA512

      fb6d49a3c5051c12a9bdc23f5d0b0450cada30b54fc557e83b55280a5ccefe00a30f9a641c65bca42f2cc1eed30ada4eabd07e97814df715f1ce9b2f046aefce

    • SSDEEP

      1536:jcWGmG94OjPC0tO8KrKd2VI5FzAiVdJ+nD2D+Fye43GN9+ckLRoCDQ76Kj:j4jO9rKRVVVdJ6D2DIH42fYeCDWb

    Score
    1/10
    behavioral16

    • Target

      VenomRAT_v6.0.3/Server.Properties.Resources.resources

    • Size

      11.6MB

    • MD5

      24bb6bf569b7b8b8b2743f1b4ec138d9

    • SHA1

      0ee96dead026dad2413cad1729c44da82e9aa0a8

    • SHA256

      db0da3c4c367aa05193b918d91fc731ccdec0241532b02f544891547bac61976

    • SHA512

      6dc0ed583a468ae2e649e6abca910f4f58ff7f0d3f0cf42effaf33b276ec520a2e6d37cd3a702a86265e537fdd570fcca5bd55cc049c8a7396ebee895101b71d

    • SSDEEP

      196608:j7aIBhLkNPFCZZwiJl1NLIsPA8fxvuIMzd/95UhS1nUzBPeXQt0Z:fT+P+Zw6NLIsFfskh1BmXG0Z

    Score
    3/10
    execution
    behavioral17

    • Target

      VenomRAT_v6.0.3/Server.Properties.Resources.resources.txt

    • Size

      27KB

    • MD5

      87e6db607c89f5fcf8465995f84d2aec

    • SHA1

      8a81e3e5f963a85c85187d1d23fa9b18144d8090

    • SHA256

      ff90e7f24c52af8cc22ab93484a90edb26f92bb0cd07f5f9f3e11565e516b38a

    • SHA512

      2366206e46ac317588b6b8ea3a1b511d8fa13fb4234585dafd396c740105d4916768c294d90c24a60301ac2ff582d728eaa8e6661bd6b4d7c77f14db2f821f05

    • SSDEEP

      384:eokwkokwbokwvokwMokw3okwpokw2okwvokwmokwMokwOokw4okwtokw3okwcokU:Ub4+djF

    Score
    3/10
    execution
    behavioral18

    • Target

      VenomRAT_v6.0.3/Stub/ClientAny.exe

    • Size

      69KB

    • MD5

      73d9313ae1fe7087365b1e8c5064da8d

    • SHA1

      9d26fc79ca9e9e0521c45f5d76516cce94e59b2c

    • SHA256

      efc3192e9c1193f50de52db0d4d578922fdc8e91d2d267cea6f8bf0e84ca49d7

    • SHA512

      f8e30df1e3852ae8e5e578bc11103ec5ba6ccf488284f1e735eb529ed0577d3703705a054999a75645daf2f8b5bf75a6d063700b16d012743ec1ad94919898cd

    • SSDEEP

      1536:NWURcxPw++Zxz2IkDzj+rBGI+z1bf/5PDKBLVclN:8URcxPQZF2/D+rB+z1bfRPwBY

    Score
    10/10
    asyncratrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat
    behavioral19

    • Target

      VenomRAT_v6.0.3/Stub/Clientx64.exe

    • Size

      69KB

    • MD5

      50fe12d9ea040a8820dee9e9d6e44e72

    • SHA1

      2d6d0fd1614ee8ad801289e5d6b81e6758ef0d74

    • SHA256

      23905e48fa50d3228cb79fc475da9d6a05be7b98eef3fd61703dacda9b591392

    • SHA512

      49263c1cb17c35e4e0e8845ac7903d12c450dbf0236e333a00dcb2aebee963beaf283ce904b2ca71031b1dcbdab8fa201926306ec2e1760f19373366d054aa46

    • SSDEEP

      1536:5WURcxPw++Zx3xa2u4AEHgIdNz1b//hPDK73VclN:wURcxPQZJUEH5z1b/JP2lY

    Score
    10/10
    asyncratrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat
    behavioral20

    • Target

      VenomRAT_v6.0.3/Stub/Clientx86.exe

    • Size

      69KB

    • MD5

      dcc12676515c05367b21d6298168cb21

    • SHA1

      7ad95d680b7c948af91aa70db1cd8887eb9ef5b6

    • SHA256

      e9538bc4d1dd9a6d8f502592af6796ae9d394b2e9ac66bf6e026cd013308e159

    • SHA512

      22aa5efdcecdbdeefdc818d7273e532d2b396f17be0536ef93ad33ef8faa49ac002cb97a3867b417ed2348b9c7913fe15bedf32fea5ae7e72082ab2904db79b6

    • SSDEEP

      1536:mWURcxPw++ZxZxi2ogEH2IdvW1bH/YPDKR7VclN:XURcxPQZ/ZEHdW1bHAPgxY

    Score
    10/10
    asyncratrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat
    behavioral21

    • Target

      VenomRAT_v6.0.3/System.IO.Compression.dll

    • Size

      65KB

    • MD5

      24e74963a68d66fcfae334d91f5c5b33

    • SHA1

      c0cf3df19033cdc055c627867795d8e458a67ccc

    • SHA256

      10a7c576a8bc639b63b9a1c6b5f8d38f85e34b3f020106b27076d395ac3d82be

    • SHA512

      6d28dd711ab97924a2e807d7df61dece98df9f262b55093e5d58117740316dfba33d329a3e75662aeed5c396e8a67afe62a099f5e6887ed23cd0d082718fe7ac

    • SSDEEP

      1536:1TABDIGPGNWQT7872ea/LSbqfMY2ZztUZzQ:mxIGNQTQqesSu0YcAU

    Score
    1/10
    behavioral22

    • Target

      VenomRAT_v6.0.3/System.ServiceModel.Internals.dll

    • Size

      804KB

    • MD5

      7f35e0251f45807e872ee0a354a8fe81

    • SHA1

      74cebb21cb95165774ea0ab082cb85cd3458ca8d

    • SHA256

      805d9e2c5cd2f2b17e68763ae4eb1db0103bd278e526de32f98e0cd336541e14

    • SHA512

      c5dfd9e43295b786eae9869ac1ede564d9d86255a58b3cf2f9af313c355fab8d5c3c4bd41291da65729ae510000446290588e9d67b2e65aa6da10777c6f5d38b

    • SSDEEP

      12288:Nk6q80n+FoAY2aScs0pbpcCqunbh9Xj9OtCXK0VWLmYss:snhATaScs0pmCq8YtCXp8mYs

    Score
    1/10
    behavioral23

    • Target

      VenomRAT_v6.0.3/Venom RAT + HVNC + Stealer + Grabber.exe

    • Size

      8.3MB

    • MD5

      d3731f0b18e95da5c477cce1c13913ca

    • SHA1

      10870da4f1880f7b48ce2530c929f4d5c8760cc1

    • SHA256

      a0df1f45f393c5b249f77f57c2647fd80631de1aaa77dbc318ddd853abbdffe5

    • SHA512

      3d273cd7bc73fa03d8c498c1ac3d423cac7e23fe266e3a1b32f93ab1e9c29c341e1ae8e1305d310486762998bca2ec8d711698a73428d2180f683ecbd2364865

    • SSDEEP

      196608:R4HkUqgBKkUYp81IknE2eZnl5PrT3KUwaUmcmSKgge:2MgBKkUYp81Ik1eZl5jTawUmcmOge

    Score
    7/10

    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    behavioral24

    • Target

      VenomRAT_v6.0.3/Vestris.ResourceLib.dll

    • Size

      76KB

    • MD5

      944ce5123c94c66a50376e7b37e3a6a6

    • SHA1

      a1936ac79c987a5ba47ca3d023f740401f73529b

    • SHA256

      7da3f0e77c4dddc82df7c16c8c781fade599b7c91e3d32eefbce215b8f06b12a

    • SHA512

      4c034ff51cc01567f3cb0796575528ca44623b864eb606266bcf955a9259ed26b20bec0086d79038158d3a5af2ada0a90f59d7c6aae9e545294fe77825dbe08b

    • SSDEEP

      1536:CSSYikTF0Z+sFGu11tIcyI1MtI9eDG3fL7:CJYD0Z9FGu11teI1r9ea3

    Score
    1/10
    behavioral25

    • Target

      VenomRAT_v6.0.3/cGeoIp.dll

    • Size

      2.3MB

    • MD5

      6d6e172e7965d1250a4a6f8a0513aa9f

    • SHA1

      b0fd4f64e837f48682874251c93258ee2cbcad2b

    • SHA256

      d1ddd15e9c727a5ecf78d3918c17aee0512f5b181ad44952686beb89146e6bd0

    • SHA512

      35daa38ad009599145aa241102bcd1f69b4caa55ebc5bb11df0a06567056c0ec5fcd02a33576c54c670755a6384e0229fd2f96622f12304dec58f79e1e834155

    • SSDEEP

      24576:TRgJE8pkCLLe/K43EnnnclQwIqJY0OjklWXQMFBRpmkL/59ah0USm3uwl00odi9p:TRgfX/59a6USdi9Ues6bV6boLO6r

    Score
    1/10
    behavioral26

    • Target

      VenomRAT_v6.0.3/dnlib.dll

    • Size

      1.1MB

    • MD5

      5cc2bb48b5e8c8ac0b99669401d15456

    • SHA1

      02e9ae08f3ec364834eb3ffc122f1c90e1b0e95e

    • SHA256

      648950f725fb0320e09c52dcaf81764916df96dc62e7429ba67daea0acb784ea

    • SHA512

      2867e94cee9f89f1cf85ad01083d75f4bc0bc0e551b2ffae05581828994f2b01a458ac7a7c94a45e8c40858ecce197f7ec23482ee13ef3f1bf82b33b89b3b420

    • SSDEEP

      24576:/bN7xZgKVl/N12pljD7DM2l8xs5A/zYv7flNcK:DyJXn3ML7G

    Score
    1/10
    behavioral27

    • Target

      VenomRAT_v6.0.3/gbpast - Login.url

    • Size

      107B

    • MD5

      4a4f5be9370e206241bb73bfc2367f3c

    • SHA1

      3d837fdcaa5e3bf04b57600cecb56a9ff34dd8f2

    • SHA256

      210f2ee620fe51acdbe59bba7bb4acbde397034818b09156f6f0874b016a5b18

    • SHA512

      2ba13fe029ac6c5bcfdecf4f9ff6bdbcd64a1129e845c94944b3b35143b8270b8e024b28302750b2214ef82371a70e59fce4226907af240f60d6ad78fb668054

    Score
    1/10
    behavioral28

    • Target

      VenomRAT_v6.0.3/learn all kind of hacking.url

    • Size

      121B

    • MD5

      7ade4a739cbd8f44d0ef52a2f1bc6e7b

    • SHA1

      20753d483e1a84cb248ba2c0fb72d44137d7d73f

    • SHA256

      cc7649ed53c65e4851ace414529564fe16801bb2bed4cb15588bfd6b4ac13616

    • SHA512

      5850c3d064c9d616854a47b4bd398b76494f1fbe9b356ec5e15879f97dc67970168196ec6b177fa71d15d25d25757a29319cbf9697f3a80461aa62b431d53851

    Score
    1/10
    behavioral29

    • Target

      VenomRAT_v6.0.3/netstandard.dll

    • Size

      96KB

    • MD5

      0adf6f32f4d14f9b0be9aa94f7efb279

    • SHA1

      68e1af02cddd57b5581708984c2b4a35074982a3

    • SHA256

      8be4a2270f8b2bea40f33f79869fdcca34e07bb764e63b81ded49d90d2b720dd

    • SHA512

      f81ac2895048333ac50e550d2b03e90003865f18058ce4a1dfba9455a5bda2485a2d31b0fdc77f6cbdfb1bb2e32d9f8ab81b3201d96d56e060e4a440719502d6

    • SSDEEP

      1536:Q2Ec05j4eAH64rh5fSt5T9nFcI94WiVQTjpu:nlK4eA7mDmWqQXpu

    Score
    1/10
    behavioral30

    • Target

      VenomRAT_v6.0.3/protobuf-net.Core.dll

    • Size

      274KB

    • MD5

      455b9dae976a4c36e8ff5f5410fb19d5

    • SHA1

      9ff8128e0ea3a38e96783c7d1c5972af3e31532c

    • SHA256

      c7ea80a04d604ad816a58dd21ab2fe765c1f3c36ddc82ee00e55705e316522ba

    • SHA512

      e468f1295f9316195d5241aa7262ad1a311e541a9da6f98e8a726805e9001fb1e21df42f6db5c18c7f755649d20cb0a16e78e0f50784fddd2ec0cd66f11017f7

    • SSDEEP

      6144:pi+J7CHEvQA8POLEimpJ6t4palxKQJrY+elOI:nZoAuqc6tt5rYlO

    Score
    1/10
    behavioral31

    • Target

      VenomRAT_v6.0.3/protobuf-net.dll

    • Size

      263KB

    • MD5

      9fa500dd5384ba90daf82ae3b55a3418

    • SHA1

      e542ab2a9c8e09ae967011098805586689dc98f3

    • SHA256

      2c93e48721089d468fc844a46365d7b160bac49f93cda07a8a956f918aebf158

    • SHA512

      3c026b1934df3afffd09aa018b842eefb9446b402d6df0a807f65609ca3ff738f815dda4ec9d02089a0b910ceaac807c66d5fd698db17fbc42df624a4ea3826a

    • SSDEEP

      3072:suX8HlAtaCHC2J7j+ryZpII4NSe3OzyA8hw44/CMOzw0aJOjBWrVwg9D/FO3KZXP:5MqaCL+uZpr4NSEfhnOOzw0Vti9EKR

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

ratstormkittyasyncrat
Score
10/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
3/10

behavioral16

Score
1/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

asyncratrat
Score
10/10

behavioral20

asyncratrat
Score
10/10

behavioral21

asyncratrat
Score
10/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
7/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10