Overview

overview

10

Static

static

5

888 Rat v1....6.exe

windows10-1703-x64

10

Resubmissions

25-09-2024 16:41

240925-t64njsygjb 7

25-09-2024 13:59

240925-ranlcayfqr 10

25-09-2024 13:56

240925-q853lsscqh 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    888 Rat v1.2.6.7z

  • Size

    74.4MB

  • Sample

    240925-ranlcayfqr

  • MD5

    54824148e3fbce8e82310a370fb15383

  • SHA1

    4a8f6987b8d7979bd736435c8172c432144f11b3

  • SHA256

    4804a369c53921ce8b508b285eab8d50955418fcf95e98c43e07ce8cbdb5d43a

  • SHA512

    c059250eae8ec86b93d886f5acea8f81ff07bd48d2bcc66eca7120a1aabe3201c8ac9f82340d39a4d9d35e1e6acc4c1598c0acc9b2f58a7ebf8d4bce1f849b42

  • SSDEEP

    1572864:FCG9qXvvO+Uf9owh4ExnuJFDEcAWhd2xoeLne8QFHVlnBxBd8uzvAtToA3l8Ui:QgqXvvYf9oMbxnKFDEcAkPAiHV5bBG50

Score
10/10
888ratdiscoveryinfostealerrattrojanupx

Malware Config

Targets

    • Target

      888 Rat v1.2.6/888 Rat v1.2.6.exe

    • Size

      75.0MB

    • MD5

      ad33064a9ca95c5b3ed45c14b7fe2739

    • SHA1

      0bd1286fa5fd936a31a4514798daffa444ce8e12

    • SHA256

      5a14099abd6fe4b396094db7f9911251b25cd57893e14f97a7e7c5f44337bc98

    • SHA512

      acb056e217edef4639179b24193a454f7e5aade51c1cc972e0458fc23c0ad982323161ad37050a4d849641dbf84719707efdcf4c99ecdf413381e5a752413647

    • SSDEEP

      1572864:5mhnD+9mK/LnkHD1LYrXatfLllR3RboTmxXlIgU/cNruKPZiv:6nD+UozkJLYrXajR4ElIgU/c5Qv

    Score
    10/10
    888ratdiscoveryinfostealerrattrojanupx

    • 888RAT

      888RAT is an Android remote administration tool.

      trojaninfostealerrat888rat

    • Android 888 RAT payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks