warzonerat | 9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd | Triage

Submit
Reports

Overview

overview

Static

static

1

9105ed5f65...cd.exe

windows7-x64

9105ed5f65...cd.exe

windows10-2004-x64

Sharing

General

Target

9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd.exe
Size

1.6MB
Sample

241121-eamb3aylbv
MD5

8d7c20e0b3834ba93482f9101881b2d0
SHA1

224544278bb8c543dddbbe1e280ec22b2550f91d
SHA256

9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd
SHA512

1509b4eed102fde0def36ce6aa7af17a48bab733dbd94fc13ef9477d484fc43c6e1bc9eca8081a21c1f11571ddc122a1f4b694d3b30a4c5f6a9c7329c92809a6
SSDEEP

12288:EjTG/NEiKx8FAuRg7Q7X/CRLL6/mkIHTydNNAF4B0laLpfqFh:EiAuRg7SFWIyFh

Score

10^/10

warzonerat discovery infostealer rat

Static task

static1

Behavioral task

behavioral1

Sample

9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd.exe

Resource

win7-20240903-en

warzonerat discovery infostealer rat

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd.exe

Resource

win10v2004-20241007-en

warzonerat discovery infostealer rat

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Extracted

Family

warzonerat

C2

cachepallioniwarznpa.icu:5200

Targets

- Target
  
  9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd.exe
- Size
  
  1.6MB
- MD5
  
  8d7c20e0b3834ba93482f9101881b2d0
- SHA1
  
  224544278bb8c543dddbbe1e280ec22b2550f91d
- SHA256
  
  9105ed5f6521230b055750c074e96ccd16ff5b5589c7697d06fa240a34b33acd
- SHA512
  
  1509b4eed102fde0def36ce6aa7af17a48bab733dbd94fc13ef9477d484fc43c6e1bc9eca8081a21c1f11571ddc122a1f4b694d3b30a4c5f6a9c7329c92809a6
- SSDEEP
  
  12288:EjTG/NEiKx8FAuRg7Q7X/CRLL6/mkIHTydNNAF4B0laLpfqFh:EiAuRg7SFWIyFh
Score

10^/10

warzonerat discovery infostealer rat
- WarzoneRat, AveMaria
  WarzoneRat is a native RAT developed in C++ with multiple plugins sold as a MaaS.
  rat infostealer warzonerat
- Warzonerat family
  warzonerat
- Warzone RAT payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

warzoneratdiscoveryinfostealerrat

behavioral2

warzoneratdiscoveryinfostealerrat

© 2018-2024

Terms | Privacy