Overview

overview

10

Static

static

10

CraxsRat 7.4 vip.rar

windows10-2004-x64

3

CraxsRat 7...7z.exe

windows10-2004-x64

3

CraxsRat 7...pt.exe

windows10-2004-x64

3

CraxsRat 7...g.html

windows10-2004-x64

8

CraxsRat 7...at.exe

windows10-2004-x64

10

CraxsRat 7...rk.dll

windows10-2004-x64

8

CraxsRat 7...ys.dll

windows10-2004-x64

8

CraxsRat 7...64.dll

windows10-2004-x64

8

CraxsRat 7...tm.dll

windows10-2004-x64

3

CraxsRat 7...PS.dll

windows10-2004-x64

3

CraxsRat 7...ms.dll

windows10-2004-x64

3

CraxsRat 7...pf.dll

windows10-2004-x64

8

CraxsRat 7...ts.dll

windows10-2004-x64

3

CraxsRat 7...io.dll

windows10-2004-x64

3

CraxsRat 7...on.dll

windows10-2004-x64

3

CraxsRat 7...le.dll

windows10-2004-x64

3

CraxsRat 7...et.dll

windows10-2004-x64

3

CraxsRat 7...xs.dll

windows10-2004-x64

8

CraxsRat 7...7z.dll

windows10-2004-x64

3

CraxsRat 7...7z.exe

windows10-2004-x64

10

CraxsRat 7...or.jar

windows10-2004-x64

3

CraxsRat 7...pt.exe

windows10-2004-x64

10

CraxsRat 7...er.jar

windows10-2004-x64

3

CraxsRat 7...ol.jar

windows10-2004-x64

3

CraxsRat 7...nk.ps1

windows10-2004-x64

3

CraxsRat 7...ni.dll

windows10-2004-x64

3

CraxsRat 7...-1.dll

windows10-2004-x64

6

CraxsRat 7...n-2.pl

windows10-2004-x64

8

CraxsRat 7...n-3.pl

windows10-2004-x64

8

CraxsRat 7...n-6.pl

windows10-2004-x64

8

CraxsRat 7...n-7.pl

windows10-2004-x64

8

CraxsRat 7...n-8.pl

windows10-2004-x64

8

Analysis

  • max time kernel
    892s
  • max time network
    617s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250207-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250207-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-02-2025 17:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CraxsRat 7.4 vip/res/Lib/apksigner.jar

  • Size

    968KB

  • MD5

    16c82bdd120d4b5803deafd3550afa5f

  • SHA1

    c1e0626fe98fdbe2f1d483f99664ec957f44f891

  • SHA256

    ba13fc4122f3c8ef23eed76e13792b033fd0506de90ec3ff1e5773e383eb6f15

  • SHA512

    9918a24392d397a64f39489dba1c73b1576ff1e6bc2c302f3fd7bb037b9f42f620ee90c12ebb625e927543e3163fbc47bcf99c93fde6deb0b9376e171f792bea

  • SSDEEP

    24576:5hCPzWIgo1IhgOBAxoBSTNDGbe48+mrmCJprmhBK5I:5hCbW6jAAks7R6OohBK5I

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 2 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • System Network Configuration Discovery: Internet Connection Discovery 1 TTPs 2 IoCs

    Adversaries may check for Internet connectivity on compromised systems.

    discovery

Processes

  • C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\CraxsRat 7.4 vip\res\Lib\apksigner.jar"
    1⤵
      PID:264
    • C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
      "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0iezhBNjlEMzQ1LUQ1NjQtNDYzYy1BRkYxLUE2OUQ5RTUzMEY5Nn0iIHZlcnNpb249IjEyMy4wLjYzMTIuMTIzIiBuZXh0dmVyc2lvbj0iIiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSI2IiBpbnN0YWxsZGF0ZXRpbWU9IjE3Mzg5NDcxNzgiIG9vYmVfaW5zdGFsbF90aW1lPSIxMzM4MzQxOTY4MDM3MTAwMDAiPjxldmVudCBldmVudHR5cGU9IjMxIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIyMTc5ODYyIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI0OTQzNTY1OTQ2Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
      1⤵
      • System Location Discovery: System Language Discovery
      • System Network Configuration Discovery: Internet Connection Discovery
      PID:2340
    • C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
      "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuNDMiIHNoZWxsX3ZlcnNpb249IjEuMy4xOTUuNDMiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7ODIzQUJBMUYtNTJGMS00OTA5LUE1QUMtRTcwQkU0QTI1NjhEfSIgdXNlcmlkPSJ7MEYyMzE5Q0UtNDgzNy00RTgyLTlFM0YtMzNBQ0Y0NzVFRkEzfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins2OTREM0ZEOS0zMDdCLTRCMzYtQTgyNi05QkY4NkVCN0I3RTZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iMiIgcGh5c21lbW9yeT0iNCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RSt4YkF6Nlk2c1UxMjg5YlM2cWw0VlJMYmtqZkJVR1RNSnNqckhyNDRpST0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE5NS40MyIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjYiIGNvaG9ydD0icnJmQDAuMDMiPjx1cGRhdGVjaGVjay8-PHBpbmcgcj0iNiIgcmQ9IjY2MTIiIHBpbmdfZnJlc2huZXNzPSJ7RTI4NTFCQkUtMjExMy00NDE2LTk1MTMtNjEyMDM2MTI5Q0RBfSIvPjwvYXBwPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI5Mi4wLjkwMi42NyIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBpbnN0YWxsYWdlPSI2IiBpc19waW5uZWRfc3lzdGVtPSJ0cnVlIiBsYXN0X2xhdW5jaF9jb3VudD0iMSIgbGFzdF9sYXVuY2hfdGltZT0iMTMzODM0MjQ5OTIxNDExODcwIj48dXBkYXRlY2hlY2svPjxwaW5nIGFjdGl2ZT0iMSIgYT0iNiIgcj0iNiIgYWQ9IjY2MTIiIHJkPSI2NjEyIiBwaW5nX2ZyZXNobmVzcz0ie0Q4MkM3QTY3LThDOTItNDJERC1BRkJDLUVBQ0E3MDhDQ0JGMX0iLz48L2FwcD48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iMTMyLjAuMjk1Ny4xNDAiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSI2IiBpbnN0YWxsZGF0ZT0iNjYwOCIgY29ob3J0PSJycmZAMC40NCI-PHVwZGF0ZWNoZWNrLz48cGluZyByPSI2IiByZD0iNjYxMiIgcGluZ19mcmVzaG5lc3M9Ins1RkUzRjIxRC01OUNGLTRGN0YtODAxMi05OTg3QjMzNjk0QzZ9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
      1⤵
      • System Location Discovery: System Language Discovery
      • System Network Configuration Discovery: Internet Connection Discovery
      PID:924

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
      Filesize

      408KB

      MD5

      3b0d40b646aa5cef8022fec742885bb2

      SHA1

      2aa6d5a992fe2b0a7449a353243a42371461a7db

      SHA256

      d9a04592848d1470f1582de761f5300b1e5e977fa33ae6a25540c9face35f76a

      SHA512

      ea3d003fa18fe1fc4aa0b1376971efc9e48cb013564d5692928f51f5db2b6dd761143e858bf5b8b2739548cd5c0ec5d5a2444925b13bdbd62f309d4b0a95fa8a

      Download Submit

    • memory/264-2-0x000001935BD40000-0x000001935BFB0000-memory.dmp

      Filesize

      2.4MB

      Download

    • memory/264-12-0x000001935BD20000-0x000001935BD21000-memory.dmp

      Filesize

      4KB

      Download

    • memory/264-13-0x000001935BD40000-0x000001935BFB0000-memory.dmp

      Filesize

      2.4MB

      Download