General
-
Target
VenomRAT_v6.0.3.rar
-
Size
92.3MB
-
Sample
240529-h4hgraef8x
-
MD5
7cbabf71dd915f44b67f1765e805e5ab
-
SHA1
bc44d2fd089fc818824a5eb8f3c4310636dc2b81
-
SHA256
668bf9ed54120899b86b21a8aa1df1075937b8c05cfca52817746b6e418e2006
-
SHA512
9a3171a9c0f813b2c228348d2d4a3b94457578a6d1d5f80d7780fffcc3d67731b49b2cfe38f6ba4498203f1551e7c1cbc7b60d2ccc4dd8412943bc634a870509
-
SSDEEP
1572864:Ox40amHGeCj7VmyotHgaspW71f6xJgOBWWqwGaoAaCAOEFHiWlMvbRje/L20J1XP:raCj7VJoBgaMW75KC1Wq0TUORWudA203
Malware Config
Targets
-
-
Target
VenomRAT_v6.0.3/BouncyCastle.Crypto.dll
-
Size
2.5MB
-
MD5
f0b3e112ce4807a28e2b5d66a840ed7f
-
SHA1
54a6743781fd4ceb720331fce92f16186931192d
-
SHA256
333903c7d22a27098e45fc64b77a264aa220605cfbd3e329c200d7e4b42c881c
-
SHA512
dc8ec9754c5e86f7e54e75ff3e5859c1b057f90e9c41788037b944a5db2cb3b70060763d0efcbe55ec595bcc47a9c0ff847a4876821470ca1659c31afd5b0190
-
SSDEEP
49152:OSSJ+G1PjodumkjD6Oc0mqHZwueCtbu9kQN:6xodumo6Lr
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/FastColoredTextBox.dll
-
Size
323KB
-
MD5
8610f4d3cdc6cc50022feddced9fdaeb
-
SHA1
4b60b87fd696b02d7fce38325c7adfc9e806f650
-
SHA256
ac926c92ccfc3789a5ae571cc4415eb1897d500a79604d8495241c19acdf01b9
-
SHA512
693d1af1f89470eab659b4747fe344836affa0af8485b0c0635e2519815e5a498f4618ea08db9dcf421aac1069a04616046207ee05b9ed66c0a1c4a8f0bddd09
-
SSDEEP
6144:0R0J4lx4/7BA4xvNdcwCOg04j0y5mwZkdmsqmLDi5eNH+Dl1SIP0:0R0J48lAovNd7CO34D4b4eNO
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Miscellaneous.dll
-
Size
82KB
-
MD5
d7d72ad5575c1b8ad9b6c170ca2ba53b
-
SHA1
51e0d8f952f22a29f92c2c37dacebc8b46e9cc4e
-
SHA256
329937d550d1f28c77dc26c45b97dd701565a58d1f60f7e3a35790c4cf87b9d7
-
SHA512
4838176ee94e1d7643eecbae46dd57bb7d8c264ec127ff0b4443186893c17854158d1576645bf2a7d5bff3f2cb5e91a5c5242e5f236b6ed8c2e18f1ecaf2d1e5
-
SSDEEP
1536:UfcvW8lMJ36WbolgVe5JnUs3O4PyamuD5KLbyywITRZcUnoKk:Ufcv4qWcqVep3O4Pya/sbyywITRZcUn8
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Netstat.dll
-
Size
25KB
-
MD5
016439dfdeab850df3845ec000f48eeb
-
SHA1
84d88f7ddd216365aae2f44806caf1f52427309d
-
SHA256
e06ec5cfd60b3312796135820cba9d230a780aef97fdc0f8da6207e8c8e5e000
-
SHA512
c671c70f25883e5cb25266628947f3c04d7054fb916ac72c39a759b4ec15e3b51008604b3554779a8dd25ab318ae369980e9a5cead22fa88151350cf153e32c0
-
SSDEEP
384:qEPYiWmPHmWSNnneMHPwfssC0odsehGmhzReDmYu/BRLJ+0ZB9iMNUVIt+AH:qZiTG5Nn14pAaqHFB9iDo+AH
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Options.dll
-
Size
378KB
-
MD5
6d598f254cd76db5b465d8a5d6244c96
-
SHA1
a8b716c7bdab3b5ddba5f06d66462cde2654d961
-
SHA256
759453183cb7b6e64ff834b3f6643fd5e8b8f2ee826d662871ad417097bc16af
-
SHA512
8de61efac210139fe8839be69772ffdb83e8913ed26c3fbc93270f3ec3270b1ba392d5612416459aa7563957f663669248b15a773dbe6696746827d0b8076597
-
SSDEEP
6144:wLEsb4D05mkOnVN6N68fKk9/FiKRcztasuG/JrI7sitpwoTa:NgA16w21rexdiG
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/ProcessManager.dll
-
Size
25KB
-
MD5
85ad68e55dfe03e679b650e2a689b905
-
SHA1
172c79f1006223e130e63ff7370d9dda01c3a87f
-
SHA256
d664a79caa45f63a3729c25859eeaf11d7692866c9438316ff3443b754c9d86c
-
SHA512
672cc61423b79b96cfb97ca83ec9f379666fbb9003c6105d170b89d7da85da443d064624421de4da6112746d240d709f7af7a696b64be8fafaaf83c8402ea0df
-
SSDEEP
384:bL3RGwZcsum1T39T9JZNAgSkguRvhCE/dsehGqG6ZDWl9UZ5QDB/BRiqFujdZ8Uh:bL3AJQ1L9BKSvhjXO45Z8UXPd/JBD
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Recovery.dll
-
Size
1.1MB
-
MD5
cdb0f455ed9d8243479d84930016b594
-
SHA1
e49842ddd267c8f0731090f56c16878564a1c196
-
SHA256
bea19e2dece602ced1d3df8c825a993f3d412c2a4d4d87eaa39f44ba4fb39e82
-
SHA512
ba5bab867d6ae8a20c9c20f9203a3cb348a0cfa411a2f03b05c698b4b7b569b31a037b72a285c2725330a10ab02532dcdb904941531839f03ed01a941f457825
-
SSDEEP
12288:oGdphbw/ZHENa9L3ofky5J0wh2vgj2FNFfcaFeFOFwcGF6cmFWc0FWc8cIcKcUFq:iJY8vmRWO/vjyK/Go9aSRmT
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Regedit.dll
-
Size
280KB
-
MD5
1311db472a7d6214c081d1570ce26cec
-
SHA1
97c69429b40f5413092522a8b9277e89ee9ad0d7
-
SHA256
c9db48c701d11ccea315e72da8482e1b00ea5472c1235f6b4e21bfff73b2e941
-
SHA512
2e7c7e9403b4e93f5047a08b5b9f0d017884840d0473f9def1b0ec23173b7dea697a4a02ed6b3e8e09a3129151385b9b3ec5c2da8793be908151f125e7114deb
-
SSDEEP
3072:tCf3TYGASJcuPma/XzwfDo6I0oWFKgboh3xTBAk0rklCGl9O7Y7T:Yf0CVMZosKJh3l
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/RemoteCamera.dll
-
Size
107KB
-
MD5
0c856c12a57ec760d42beb7c7aa9f654
-
SHA1
fb2344188d90ae256782cdf3814e8cb2d82353bb
-
SHA256
083b7be903110cbe07e367df7f1ccf0283fb25a3561969dadca319c5ee580865
-
SHA512
cecea1ae8a904d54a9841ba043708668bf98b904a7b1e5ca096efed04f2e1e88b713e2f43b5021033c74481e3052b641553f5bd1df2898c3feb26d43adc457be
-
SSDEEP
3072:OJMMGGkkad8SHHhh//dIC44CCwwOCoYWJsCOtuUqIpQkodrY6Jj0au:cMMGGkkatHHhh//dIC44CCwwOCmJsII/
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/RemoteDesktop.dll
-
Size
34KB
-
MD5
7ce57602a56e0c140569e80e6bdca112
-
SHA1
66efe692b9a866c29eafd5f49f9b87ddf30e249c
-
SHA256
82bcf176d913f0776418319f42dc5d04ed32e1fa7228cc3802d41e62b5147256
-
SHA512
5b422783c8971a8ccaf4fcab6fc5e3f494bc74d575b57d209c5c826f8438a73480bbe178d13cc7ce66036ac9b5fd7b033d8f811436e7f88a9b49785e343ac8fd
-
SSDEEP
768:genZgEDOUu72ffjm9k0T0dDxZDlOxmVfl:ge4+fCRT8DxZhOkv
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/ReverseProxy.dll
-
Size
553KB
-
MD5
d560dc1d671c9f63341eaa2e82e8da3e
-
SHA1
f4a241eb751c8bedb329db709addc799481d7347
-
SHA256
839728b1c09a00907e3efc67de957600c59d6a03afc8f8880160e9ede8ed93a0
-
SHA512
1f3730857c918ab8aabb8beeca48d1be2db05d78f105f1fcbd156aff04068492d75b995af92f639e5944859f73a8c6aa9302749f9d0c361f0523b25f69b433bc
-
SSDEEP
6144:aXfUJwJRSekrGXdBr/kRCUkAk7mt4Jx0outpvikG0WbuNIlTV0zANjLJ6N0zTdIa:yuqhwNUxOWdzvN1oi9tcUkUnj56CfAJ
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/SendFile.dll
-
Size
26KB
-
MD5
7b93b63734901d7a5c40e06c6706c1e7
-
SHA1
3c534fbfade38a1f1b90ce463cdef404c1330234
-
SHA256
54c537118656e6c56c55e5894d5798cf4ed495ba7992b46050649ff660dfe7d5
-
SHA512
7711ea2c15dcaa0503e5fe92ee9f03af32d8ed37dc5ea4a40c46e77ab65ecf0321dad1ad11b73845d7dc94ca6f261769d4dafd538abb4be0d70a0a2153fb4a32
-
SSDEEP
384:mZD+IRbL8m9j4lzfUVugdsehG8QThiU7eugRZLBRphrcnlTaOCq3zqn+D9fnB:K5939j4lLGugttvprQndCA3RvB
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/SendMemory.dll
-
Size
28KB
-
MD5
afb9b0c9bb59fb128406ae3f9fb71c78
-
SHA1
820c24c6a252639f6d92130a4a6c83db53f8f3e7
-
SHA256
d179e1d3e1f46c85bb4a03e9c9069e8b529999e776b7b12c2d4a47f622535f8c
-
SHA512
23102da3a25695c45a20f6bcf8ae82d58b00a92c359db9de5ff1584775fc521ef46ee9468032cd771afd87c035e2181c3d15072de1738ea0665e39294c638f80
-
SSDEEP
768:SDFB3bs7TngUza7xesycCcB9D4WEI7I+HmMn:SDFB3bl7CcZBZ4WQ+Pn
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/Stealer.dll
-
Size
1.2MB
-
MD5
148df73fc5c660433a2f879623e20200
-
SHA1
37876b040a553b27cb8adba4e6d36a578f4aa6f8
-
SHA256
b68d9d96af261cd1103255a35838e4d8112598f1a15d860c7b932ee098ee143c
-
SHA512
17434fa00756bbed7c0a426580f771e59d7f4e7ae0858f1daed0c9b38cfe0adac7f1c52bbf664c51cf4c1b1bd62a8e3e981cc2585fb26fde278e3101401483a3
-
SSDEEP
24576:gatZD2Q9NXw2/wPOjdGxYjm0h7u7FIwgk5jfIgW5kA24:gatRTq24GjdGSjmUzitbv
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/hvnc.exe
-
Size
36KB
-
MD5
fc73d7d3f06595cee03b6d5c8d7f1288
-
SHA1
295e40e9b723ca96bbfcd7e2e9f4c57f9cfe31fb
-
SHA256
995eda42ca6298269c8ce9e6c6fe857704ceec211911bae8379f8e905eae6d32
-
SHA512
ad99172ca8c444b8c8473522d8c40229426b5cf9c7db49cd42d92804bc3d197ca9ca947fe8d77ec9abbd24cc386c7fa40128dd3b724d26a235d879fdf9c60fc0
-
SSDEEP
768:fB92a2NJWV2D2i/BLJUxGAPqpWupz/CTRtYnhbnpwgCWPL2Pi:7fPqAupz/SehbigCWjl
Score1/10 -
-
-
Target
VenomRAT_v6.0.3/Plugins/x64/SQLite.Interop.dll
-
Size
1.7MB
-
MD5
c2d9e689c9b7dbfbd6266430fcce1add
-
SHA1
1ce680f48d19ab31f4af39c261451804a2858a11
-
SHA256
7bf956ba8edbc7358398707afddafa3acfcb212796f4169130d7cfa557653e67
-
SHA512
24867f191cb91e1a6dc7dbcfba02881dcb9bf49166315508bcfd331f51495a536431d33b5444fcfd270adf6def4691301c17c328cd8ef779819429437f590e08
-
SSDEEP
24576:DLTtHBGpRMWBny2uuf/PWEkOgwCyWUMZ4Gt+bQ6QjwUJFN:nGpi8d/vZLxjnQM
Score1/10 -