Overview

overview

3

Static

static

3

Release/Ea...2).exe

windows7-x64

1

Release/Ea...2).exe

windows10-2004-x64

1

Release/Ea...4).exe

windows7-x64

1

Release/Ea...4).exe

windows10-2004-x64

1

Release/Fa...ox.dll

windows7-x64

1

Release/Fa...ox.dll

windows10-2004-x64

1

Release/Guna.UI2.dll

windows7-x64

1

Release/Guna.UI2.dll

windows10-2004-x64

1

Release/Leaf.xNet.dll

windows7-x64

1

Release/Leaf.xNet.dll

windows10-2004-x64

1

Release/Mi...rp.dll

windows7-x64

1

Release/Mi...rp.dll

windows10-2004-x64

1

Release/Mi...ic.dll

windows7-x64

1

Release/Mi...ic.dll

windows10-2004-x64

1

Release/NAudio.dll

windows7-x64

1

Release/NAudio.dll

windows10-2004-x64

1

Release/Ne...on.dll

windows7-x64

1

Release/Ne...on.dll

windows10-2004-x64

1

Release/PacketLib.dll

windows7-x64

1

Release/PacketLib.dll

windows10-2004-x64

1

Release/Pl...in.dll

windows7-x64

1

Release/Pl...in.dll

windows10-2004-x64

1

Release/Pl...ng.dll

windows7-x64

1

Release/Pl...ng.dll

windows10-2004-x64

1

Release/Pl...at.dll

windows7-x64

1

Release/Pl...at.dll

windows10-2004-x64

1

Release/Pl...er.dll

windows7-x64

1

Release/Pl...er.dll

windows10-2004-x64

1

Release/Pl...re.dll

windows7-x64

1

Release/Pl...re.dll

windows10-2004-x64

1

Release/Pl...on.dll

windows7-x64

1

Release/Pl...on.dll

windows10-2004-x64

1

Resubmissions

25/05/2024, 21:03

240525-zv5dlaad2y 10

25/05/2024, 20:57

240525-zrtgxsab7v 3

Analysis

  • max time kernel
    142s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/05/2024, 20:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Release/Eagle Monitor RAT Reborn (x64).exe

  • Size

    1.7MB

  • MD5

    ecc201468da185e4a1077b2365612d69

  • SHA1

    19a88f7714540978061783e9ef06216a26bb96d9

  • SHA256

    8dd6faac5e0506611f9c7abb642e8f5039ade9f3e7dab7200066760520f0a4aa

  • SHA512

    7ef9e631ec76e7cd4270f54624e60ada03ebe6ed6cfd32e20140c6735f5f7758503cd7ae2412b8dd82d0708da7ad18b06572f7a65a74c7938976c4dbc31ac6a0

  • SSDEEP

    49152:+FrF7FlliZRy5rEAyboFn7UrbrH1gm4E5:wBRuF2Ivj

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Release\Eagle Monitor RAT Reborn (x64).exe
    "C:\Users\Admin\AppData\Local\Temp\Release\Eagle Monitor RAT Reborn (x64).exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1828-0-0x00007FFA84AA3000-0x00007FFA84AA5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1828-1-0x0000028F478E0000-0x0000028F47A94000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/1828-2-0x0000028F624C0000-0x0000028F626C0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1828-3-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1828-4-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1828-5-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1828-6-0x0000028F63180000-0x0000028F6319A000-memory.dmp

    Filesize

    104KB

    Download

  • memory/1828-7-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1828-8-0x0000028F631D0000-0x0000028F631F6000-memory.dmp

    Filesize

    152KB

    Download

  • memory/1828-9-0x0000028F661F0000-0x0000028F662A0000-memory.dmp

    Filesize

    704KB

    Download

  • memory/1828-10-0x0000028F63230000-0x0000028F63252000-memory.dmp

    Filesize

    136KB

    Download

  • memory/1828-11-0x0000028F622C0000-0x0000028F62469000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/1828-12-0x00007FFA84AA3000-0x00007FFA84AA5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1828-13-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1828-15-0x00007FFA84AA0000-0x00007FFA85561000-memory.dmp

    Filesize

    10.8MB

    Download