Overview

overview

10

Static

static

10

S-400 RAT v3.0.exe

windows7-x64

10

S-400 RAT v3.0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    S-400 RAT v3.0.exe

  • Size

    10.7MB

  • MD5

    a39a575da05f3dddeda3508b992f41ee

  • SHA1

    1cfb7c32b81d22d6bded1bcfe07e6b86769df7f0

  • SHA256

    69d72335bc69e00572e589826b8b8bcce4596df75c6f8ceae6f1c6745af3ef95

  • SHA512

    2bae0dcbeb9f28c2f20ad5e5103eaf4d6824d4a7f33f59e57f9ac151c898089f919c6e5ef980a56d4025ee32812ce985be0b3d7799ca72f1851caffae749683a

  • SSDEEP

    98304:/WZ2Pm4Jyohom4JyP0H0ouruYXn6bX2gso4TQqW0KRXdLbnm4Jy:/Wkv/hivDpbXxCQqWlPX

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • S-400 RAT v3.0.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections