sliver | 2b0d106769e31de3257b21fa88d7dc80819ade9b8eed16a2a079ecf745180e15 | Triage

Submit
Reports

Overview

overview

Static

static

3

2024-07-06...ch.exe

windows7-x64

1

2024-07-06...ch.exe

windows10-2004-x64

Sharing

General

Target

2024-07-06_cae25b2e9a4f9e5ed5705a22fbaa83d2_poet-rat_snatch
Size

19.2MB
Sample

240706-sxmg8svglg
MD5

cae25b2e9a4f9e5ed5705a22fbaa83d2
SHA1

59864e4faf0b3077f702e56926917193bd81e92a
SHA256

2b0d106769e31de3257b21fa88d7dc80819ade9b8eed16a2a079ecf745180e15
SHA512

5614f3658c45cf8159e01bb4702dd2904a534a1346519130a65ed760f58aeb961cb307447945e0a34f9e40d579d80f757ebbe5abbe344d2d232355b2f5129674
SSDEEP

393216:GOynShfZEczqfv4y+BadD3Vmf7Grx9J1L:GOyn4zqX+BaBY7Grx9rL

Score

10^/10

sliver backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-07-06_cae25b2e9a4f9e5ed5705a22fbaa83d2_poet-rat_snatch.exe

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-07-06_cae25b2e9a4f9e5ed5705a22fbaa83d2_poet-rat_snatch.exe

Resource

win10v2004-20240704-en

sliver backdoor trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-07-06_cae25b2e9a4f9e5ed5705a22fbaa83d2_poet-rat_snatch
- Size
  
  19.2MB
- MD5
  
  cae25b2e9a4f9e5ed5705a22fbaa83d2
- SHA1
  
  59864e4faf0b3077f702e56926917193bd81e92a
- SHA256
  
  2b0d106769e31de3257b21fa88d7dc80819ade9b8eed16a2a079ecf745180e15
- SHA512
  
  5614f3658c45cf8159e01bb4702dd2904a534a1346519130a65ed760f58aeb961cb307447945e0a34f9e40d579d80f757ebbe5abbe344d2d232355b2f5129674
- SSDEEP
  
  393216:GOynShfZEczqfv4y+BadD3Vmf7Grx9J1L:GOyn4zqX+BaBY7Grx9rL
Score

10^/10

sliver backdoor trojan
- Sliver RAT v2
- SliverRAT
  SliverRAT is an open source Adversary Emulation Framework.
  trojan backdoor sliver
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

sliverbackdoortrojan

© 2018-2025

Terms | Privacy