334b93afb2ddd91b0b8788990b3c43656cf2b952c666bfc17b25ea2162522fce

Submit
Reports

Overview

overview

Static

static

VenomRAT v...to.dll

windows10-ltsc 2021-x64

VenomRAT v...nt.exe

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v....1.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v....1.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v...UI.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v....1.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v....1.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v....2.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...ng.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...ng.dll

windows10-ltsc 2021-x64

VenomRAT v...re.dll

windows10-ltsc 2021-x64

VenomRAT v...ler.js

windows10-ltsc 2021-x64

VenomRAT v...or.vbs

windows10-ltsc 2021-x64

VenomRAT v...per.js

windows10-ltsc 2021-x64

VenomRAT v...ker.js

windows10-ltsc 2021-x64

VenomRAT v...em.vbs

windows10-ltsc 2021-x64

VenomRAT v...ify.js

windows10-ltsc 2021-x64

VenomRAT v...ec.vbs

windows10-ltsc 2021-x64

Analysis

max time kernel
148s
max time network
158s
platform
windows10-ltsc 2021_x64
resource
win10ltsc2021-20241211-en
resource tags

arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system
submitted
16-12-2024 14:53

Sharing

Copy URL

Twitter E-mail

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

VenomRAT v6.0.3 (SOURCE)/BouncyCastle.Crypto.dll

Resource

win10ltsc2021-20241211-en

asyncrat default defense_evasion discovery persistence phishing privilege_escalation rat

windows10-ltsc 2021-x64

28 signatures

150 seconds

Behavioral task

behavioral2

Sample

VenomRAT v6.0.3 (SOURCE)/Client.exe

Resource

win10ltsc2021-20241023-en

asyncrat default rat

windows10-ltsc 2021-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Charts.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.CodeParser.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Data.Desktop.v22.1.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Data.Desktop.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Data.v22.1.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Data.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.DataAccess.v22.2.UI.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.DataAccess.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.DataVisualization.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Diagram.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Dialogs.v22.2.Core.dll

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Drawing.v22.1.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Drawing.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Images.v22.1.dll

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Images.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Mvvm.v22.2.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Office.v22.1.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Office.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Pdf.v22.1.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Pdf.v22.1.Drawing.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Pdf.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.Pdf.v22.2.Drawing.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

VenomRAT v6.0.3 (SOURCE)/DevExpress.PivotGrid.v22.2.Core.dll

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Handle_Packet/HandleStealer.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Helper/HexEditor/HexEditor.vbs

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Helper/RegistryKeyHelper.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Helper/RegistrySeeker.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Helper/RegistryValueLstItem.vbs

Resource

win10ltsc2021-20241023-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/Helper/TelegramNotify.js

Resource

win10ltsc2021-20241211-en

execution

windows10-ltsc 2021-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

VenomRAT v6.0.3 (SOURCE)/Source Code/StreamLibrary/IUnsafeCodec.vbs

Resource

win10ltsc2021-20241211-en

windows10-ltsc 2021-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

VenomRAT v6.0.3 (SOURCE)/DevExpress.CodeParser.v22.2.dll
Size

1.7MB
MD5

ec3a80bc6de2d32444c582f31c14000f
SHA1

e4d880a4845095b18cc13b98d2d8f46d2c894a36
SHA256

aa74c8d4b98543a9f277860c7d11a64d762b4dd20d93acdbe0e4193fb69d5245
SHA512

7b469292db8fdb315a0647a060e28f6d2a5ff9fce81e4a5d8db9438b28fec7144b9ab02177fe8cb4bf7a54c407c8dca9dbfed437e8f0b71ead1bab2043b90eef
SSDEEP

24576:O2pK1qXadH/E7i39l5/uwPSs/Eq9VtPRRJ/Jf/j6y0xkW9C3/TQjZU:G6K5/up6nPBt09CvTQu

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\VenomRAT v6.0.3 (SOURCE)\DevExpress.CodeParser.v22.2.dll",#1
1⤵
PID:4808

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --string-annotations=is-enterprise-managed=no --field-trial-handle=4048,i,7677740171411505003,10774948348272560236,262144 --variations-seed-version --mojo-platform-channel-handle=5452 /prefetch:8
1⤵
PID:4916

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads