General
-
Target
CraxsRAT VIP7.6.rar
-
Size
263.2MB
-
Sample
250112-vazkdszpes
-
MD5
ee89f8b7ce30680f83e0d1f049e74d74
-
SHA1
89105f0053f4c0a35ffc3055ef6134244791d6c2
-
SHA256
34987821b66ff27704d422d3c7b741888b7faae9c740e2c8133ee3e2dfffbeb5
-
SHA512
0f26a9bf7ec93cf7b507e2e22581f9c64661104906fec4ad81f8616dddc6bebb6211bb43e09d87a52b52222d4d3a400d124574e85250c862e28455b484735949
-
SSDEEP
6291456:AGgAiyUFuBQKiYglxLzI+r5LNY3d6kfvYcvP4lZeDhB:AGwZui+WEyLNOEkYcvP4nelB
Malware Config
Targets
-
-
Target
CraxsRAT VIP7.6.rar
-
Size
263.2MB
-
MD5
ee89f8b7ce30680f83e0d1f049e74d74
-
SHA1
89105f0053f4c0a35ffc3055ef6134244791d6c2
-
SHA256
34987821b66ff27704d422d3c7b741888b7faae9c740e2c8133ee3e2dfffbeb5
-
SHA512
0f26a9bf7ec93cf7b507e2e22581f9c64661104906fec4ad81f8616dddc6bebb6211bb43e09d87a52b52222d4d3a400d124574e85250c862e28455b484735949
-
SSDEEP
6291456:AGgAiyUFuBQKiYglxLzI+r5LNY3d6kfvYcvP4lZeDhB:AGwZui+WEyLNOEkYcvP4nelB
-
Executes dropped EXE
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-