doomrat | bc170c972d0afa3ba32efe6f314184ed17f21bf66138b82da8cc009d1538685f | Triage

Submit
Reports

Overview

overview

Static

static

DoomRat.exe

windows10-1703-x64

7

Sharing

General

Target

DoomRat.exe
Size

13.1MB
Sample

240927-n42taa1fkl
MD5

48db92182a568dfdd63fecd5deca1dd2
SHA1

f2643170c2e9bafb9ce07a9e7ab36a748f2eb77d
SHA256

bc170c972d0afa3ba32efe6f314184ed17f21bf66138b82da8cc009d1538685f
SHA512

6ed54764152700a49ac54f90d64714ccad79ce881eb9190c362fbc95c4a3f6321e13f19e49fcc226255d298625c0e29de838bb14cd06ee322537085173408c3a
SSDEEP

393216:yGV21SQhZ2YsHFUK2Jn1+TtIiFQS2NXNsIX3WabTToj:tFQZ2YwUlJn1QtIm28Inpzo

Score

10^/10

doomrat antivm apt backdoor banker bootkit botnet clipper collection crypter discovery downloader dropper evasion exploit exploiter upx adware pyinstaller

Static task

static1

pyinstaller adware antivm apt upx backdoor banker bootkit botnet clipper collection crypter discovery downloader dropper evasion exploit exploiter doomrat

4 signatures

Behavioral task

behavioral1

Sample

DoomRat.exe

Resource

win10-20240611-en

windows10-1703-x64

3 signatures

300 seconds

Malware Config

Targets

- Target
  
  DoomRat.exe
- Size
  
  13.1MB
- MD5
  
  48db92182a568dfdd63fecd5deca1dd2
- SHA1
  
  f2643170c2e9bafb9ce07a9e7ab36a748f2eb77d
- SHA256
  
  bc170c972d0afa3ba32efe6f314184ed17f21bf66138b82da8cc009d1538685f
- SHA512
  
  6ed54764152700a49ac54f90d64714ccad79ce881eb9190c362fbc95c4a3f6321e13f19e49fcc226255d298625c0e29de838bb14cd06ee322537085173408c3a
- SSDEEP
  
  393216:yGV21SQhZ2YsHFUK2Jn1+TtIiFQS2NXNsIX3WabTToj:tFQZ2YwUlJn1QtIm28Inpzo
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

pyinstalleradware antivm apt upx backdoor banker bootkit botnet clipper collection crypter discovery downloader dropper evasion exploit exploiterdoomrat

behavioral1

© 2018-2024

Terms | Privacy