Overview

overview

7

Static

static

7

CraxsRat 7.4.zip

windows11-21h2-x64

7

CraxsRat 7...g.html

windows11-21h2-x64

1

CraxsRat 7...rk.dll

windows11-21h2-x64

1

CraxsRat 7...ys.dll

windows11-21h2-x64

1

CraxsRat 7...64.dll

windows11-21h2-x64

1

CraxsRat 7...tm.dll

windows11-21h2-x64

1

CraxsRat 7...PS.dll

windows11-21h2-x64

1

CraxsRat 7...ms.dll

windows11-21h2-x64

1

CraxsRat 7...pf.dll

windows11-21h2-x64

1

CraxsRat 7...ts.dll

windows11-21h2-x64

1

CraxsRat 7...io.dll

windows11-21h2-x64

1

CraxsRat 7...on.dll

windows11-21h2-x64

1

CraxsRat 7...le.dll

windows11-21h2-x64

1

CraxsRat 7...et.dll

windows11-21h2-x64

1

CraxsRat 7...xs.dll

windows11-21h2-x64

1

CraxsRat 7...7z.dll

windows11-21h2-x64

3

CraxsRat 7...7z.exe

windows11-21h2-x64

7

CraxsRat 7...or.jar

windows11-21h2-x64

7

CraxsRat 7...pt.exe

windows11-21h2-x64

7

CraxsRat 7...er.jar

windows11-21h2-x64

7

CraxsRat 7...ol.jar

windows11-21h2-x64

7

CraxsRat 7...nk.ps1

windows11-21h2-x64

3

CraxsRat 7...ni.dll

windows11-21h2-x64

1

CraxsRat 7...-1.dll

windows11-21h2-x64

1

platformBi...32.dll

windows11-21h2-x64

1

platformBi...ge.dll

windows11-21h2-x64

1

platformBi...32.dll

windows11-21h2-x64

1

CraxsRat 7...n-2.pl

windows11-21h2-x64

3

CraxsRat 7...n-3.pl

windows11-21h2-x64

3

CraxsRat 7...n-6.pl

windows11-21h2-x64

3

CraxsRat 7...n-7.pl

windows11-21h2-x64

3

CraxsRat 7...n-8.pl

windows11-21h2-x64

3

Analysis

  • max time kernel
    1481s
  • max time network
    1501s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240426-en
  • resource tags

    arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    21-05-2024 15:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CraxsRat 7.4/HVMRuntm.dll

  • Size

    1.8MB

  • MD5

    9021bc4fd9cc7752687ea1516e8a2294

  • SHA1

    cc169f76ed62e9377130500553d9391a4fa16e9e

  • SHA256

    8c15355190608d6f3e08efab275faca80f34683d489bb382efac8c02797bfaa1

  • SHA512

    e853def48945ad6ba310015010e89cc4058469a3a2e7d5b2b8d438aead520393f0a34d12510fa9e5f2b0d0ec0465da5186eac6c4a6d3df34b0caf1ac594919a8

  • SSDEEP

    49152:HGrO4YmI6VdhlItpy213BMps1vKKo5g5n8qwS32:HGZY36V/6niEiTqn8H

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\CraxsRat 7.4\HVMRuntm.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:432
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\CraxsRat 7.4\HVMRuntm.dll",#1
      2⤵
        PID:4088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads