BX RAT V1[.]3[.]zip

General

Target

BX RAT V1.3.zip
Size

2.7MB
MD5

8a682fa840340bce63c53ca44a1fad9a
SHA1

f5be662422d8fbc454c8b0ba48871f808659d46d
SHA256

65f09f5a1c5368f1e5946ca45b0b28470ad5d47633fed7dfc837c02d5660e722
SHA512

609cfb0b1133a0d6cea94719709b4c3a65eba312e09387418b037aa60ead612a1d4ce278f524371a477d649020836515a38ebbcc09fdc36d927615ad751a7ce5
SSDEEP

49152:UMH3KzZLWQIzT5bOnk/dKo9k1u0JEoki4J82TjN6oHh//6OSZ6wgO/oKUG:UnFu4Lo9SfJ94qqJJ6O3wgO/aG

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BX RAT V1.3/BX RAT V1.3.exe
unpack001/BX RAT V1.3/Stub.exe

Files

BX RAT V1.3.zip
.zip
BX RAT V1.3/About.txt
BX RAT V1.3/BX RAT V1.3.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\BurhanAlassad\Desktop\BX RAT V1.3\BX RAT V1.3\obj\Debug\BX RAT V1.3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BX RAT V1.3/Stub.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\BurhanAlassad\Desktop\StubX\StubX\obj\Debug\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 321KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.reloc Size: 512B - Virtual size: 12B

.rsrc Size: 113KB - Virtual size: 113KB

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 321KB - Virtual size: 320KB

.reloc Size: 512B - Virtual size: 12B

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.reloc
Size: 512B - Virtual size: 12B

.rsrc
Size: 113KB - Virtual size: 113KB

.text
Size: 321KB - Virtual size: 320KB

.reloc
Size: 512B - Virtual size: 12B

.rsrc
Size: 4KB - Virtual size: 4KB