Overview

overview

10

Static

static

10

2024-05-24...at.exe

windows7-x64

1

2024-05-24...at.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-24_ff3c95cde6789d2b8aaceb81da6920e1_avaddon_poet-rat

  • Size

    47.1MB

  • MD5

    ff3c95cde6789d2b8aaceb81da6920e1

  • SHA1

    15bdaa8e5bb36c2d447a719eed514bae6d93f401

  • SHA256

    2c1bbe6f4614061659181cb10f57991ef318797491241bcebde6b0180f6e6cfc

  • SHA512

    717aecccee5b92899e637f3db51a2f9720ad35512c2feeec62edb79bdf1b2b1b206e156fc9d60fc30f6877d5e4a60d7da69d1205c5e48206ba00f12948480a82

  • SSDEEP

    393216:f2G+MUwHtWaiilQxM3PxcyMPSj6wgT/jn8jQ3:O8AaiiUqj63D

Score
10/10

Malware Config

Signatures

  • Detects executables containing URLs to raw contents of a Github gist 1 IoCs
  • Detects executables containing possible sandbox analysis VM usernames 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-24_ff3c95cde6789d2b8aaceb81da6920e1_avaddon_poet-rat
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections