sliver | 1f28632c37ff3d6a0750c9cf8cd526f6bf9a69b314bf80d2f5f555c1b23df3fd

Analysis

max time kernel
134s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
03-07-2024 20:07

Target

loader.exe
Size

12.3MB
MD5

72746f85a95c06db1179a0d319145f6f
SHA1

961619b433ed13971bc5c419a8e445d01cafb932
SHA256

1f28632c37ff3d6a0750c9cf8cd526f6bf9a69b314bf80d2f5f555c1b23df3fd
SHA512

2da0c0d0c288ac892b892b01d80f3de5d00b45ffad51874e52ab18f64f33f0ab690e89779bcb6ba2f092a9a0e116152b06ad7a281f22b042eff480c4f3b42cf0
SSDEEP

393216:xWwKUvdyEROtSH9/LvvJXuxx+0NOVyF8OSVh:xW4yErHBd208tSz

Score

10^/10

Sliver RAT v2 5 IoCs

resource	yara_rule
behavioral2/memory/3504-2-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp	SliverRAT_v2
behavioral2/memory/3504-4-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp	SliverRAT_v2
behavioral2/memory/3504-3-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp	SliverRAT_v2
behavioral2/memory/3504-5-0x000001D4A4150000-0x000001D4A4D81000-memory.dmp	SliverRAT_v2
behavioral2/memory/3504-6-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp	SliverRAT_v2

SliverRAT
SliverRAT is an open source Adversary Emulation Framework.
trojan backdoor sliver

C:\Users\Admin\AppData\Local\Temp\loader.exe
"C:\Users\Admin\AppData\Local\Temp\loader.exe"
1⤵
PID:3504

memory/3504-0-0x000001D4A4150000-0x000001D4A4D81000-memory.dmp

Filesize
12.2MB

Download
memory/3504-2-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp

Filesize
12.6MB

Download
memory/3504-4-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp

Filesize
12.6MB

Download
memory/3504-3-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp

Filesize
12.6MB

Download
memory/3504-5-0x000001D4A4150000-0x000001D4A4D81000-memory.dmp

Filesize
12.2MB

Download
memory/3504-6-0x000001D4A7160000-0x000001D4A7DFD000-memory.dmp

Filesize
12.6MB

Download