Malware Analysis Report

2025-03-15 01:14

Sample ID 250214-fgd5psspdr
Target config (1).exe
SHA256 bc6832776e4b42a72e1820afa59f370ce3b50bfb1b28dfa5eaf51a27c05a2525
Tags
silverrat trojan
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

bc6832776e4b42a72e1820afa59f370ce3b50bfb1b28dfa5eaf51a27c05a2525

Threat Level: Known bad

The file config (1).exe was found to be: Known bad.

Malicious Activity Summary

silverrat trojan

Silverrat family

SilverRat

Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2025-02-14 04:50

Signatures

Silverrat family

silverrat

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-02-14 04:50

Reported

2025-02-14 04:50

Platform

win10v2004-20250211-en

Max time kernel

1s

Command Line

"C:\Users\Admin\AppData\Local\Temp\config (1).exe"

Signatures

SilverRat

trojan silverrat

Silverrat family

silverrat

Processes

C:\Users\Admin\AppData\Local\Temp\config (1).exe

"C:\Users\Admin\AppData\Local\Temp\config (1).exe"

Network

Country Destination Domain Proto
N/A 8.8.8.8:53 udp
N/A 20.190.159.73:443 tcp
N/A 8.8.8.8:53 udp
N/A 150.171.28.10:443 tcp
N/A 8.8.8.8:53 udp
N/A 199.232.214.172:80 tcp

Files

memory/3752-1-0x0000000000E10000-0x0000000000E1E000-memory.dmp

memory/3752-0-0x00007FF846993000-0x00007FF846995000-memory.dmp