bruteratel | b59a84b168f1524bdd0f0dad450b042e861bba7e90d91514678fdf557ca64356 | Triage

Submit
Reports

Overview

overview

Static

static

3

wme.dll

windows10-2004-x64

Sharing

General

Target

wme.zip
Size

643KB
Sample

241030-scea5awbkb
MD5

733fff1d917e41379b5a0367a25ab0f3
SHA1

3b15172233f01a5e7866a5ef12a55192d079efa8
SHA256

b59a84b168f1524bdd0f0dad450b042e861bba7e90d91514678fdf557ca64356
SHA512

26b49cdde80dce8f43b181020711289468bc14edec4fe9387d29420894bcbf4b16984c599aed0d0c8b64a053ffe459887a2489fb26dee676349ca2e9eaf331ae
SSDEEP

12288:cSNbUy2PaSpnbBcOGQhcYAiB3RfnA1cbRs91hPrA9j0nqHniWqUxwRMGa:cSqy2vbBc4hWafnAC1QhA9tiwia

Score

10^/10

bruteratel backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

wme.dll

Resource

win10v2004-20241007-en

bruteratel backdoor

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  wme.dll
- Size
  
  1.4MB
- MD5
  
  6696bb4cafb96b82037ba3038b206d81
- SHA1
  
  6d46de3e9119c49ab86e303f87f9b30a0f164063
- SHA256
  
  1921c1e04ba16e71ff38e58efe210a7d9f433cf122eb5f8054dbbea2a381e54d
- SHA512
  
  49bcc12bd899c7d7130684233e0ac5ce74a65dd6ca14104e1812293c0619bf76251dff64dd51b627226fdcc76584cf72273398c276a76141934aeb7c173e2a83
- SSDEEP
  
  24576:SjPmkfHk7ONT01cDYLSTRrstVey92QOn9Kw1:SjPmkfHk7O5DYLSFrEVeyjOE4
Score

10^/10

bruteratel backdoor
- Brute Ratel C4
  A customized command and control framework for red teaming and adversary simulation.
  backdoor bruteratel
- Bruteratel family
  bruteratel
- Detect BruteRatel badger
- Blocklisted process makes network request
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bruteratelbackdoor

© 2018-2024

Terms | Privacy