General

  • Target

    CraxsRAT VIP7.6.rar

  • Size

    263.2MB

  • Sample

    250112-vazkdszpes

  • MD5

    ee89f8b7ce30680f83e0d1f049e74d74

  • SHA1

    89105f0053f4c0a35ffc3055ef6134244791d6c2

  • SHA256

    34987821b66ff27704d422d3c7b741888b7faae9c740e2c8133ee3e2dfffbeb5

  • SHA512

    0f26a9bf7ec93cf7b507e2e22581f9c64661104906fec4ad81f8616dddc6bebb6211bb43e09d87a52b52222d4d3a400d124574e85250c862e28455b484735949

  • SSDEEP

    6291456:AGgAiyUFuBQKiYglxLzI+r5LNY3d6kfvYcvP4lZeDhB:AGwZui+WEyLNOEkYcvP4nelB

Score
7/10

Malware Config

Targets

    • Target

      CraxsRAT VIP7.6.rar

    • Size

      263.2MB

    • MD5

      ee89f8b7ce30680f83e0d1f049e74d74

    • SHA1

      89105f0053f4c0a35ffc3055ef6134244791d6c2

    • SHA256

      34987821b66ff27704d422d3c7b741888b7faae9c740e2c8133ee3e2dfffbeb5

    • SHA512

      0f26a9bf7ec93cf7b507e2e22581f9c64661104906fec4ad81f8616dddc6bebb6211bb43e09d87a52b52222d4d3a400d124574e85250c862e28455b484735949

    • SSDEEP

      6291456:AGgAiyUFuBQKiYglxLzI+r5LNY3d6kfvYcvP4lZeDhB:AGwZui+WEyLNOEkYcvP4nelB

    Score
    7/10
    • Executes dropped EXE

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Enterprise v15

Tasks