Overview

overview

10

Static

static

3

RootRAT.rar

windows7-x64

10

RootRAT.rar

windows10-2004-x64

8

RootRAT/Pl...am.dll

windows7-x64

3

RootRAT/Pl...am.dll

windows10-2004-x64

8

RootRAT/Plugin/ch.dll

windows7-x64

1

RootRAT/Plugin/ch.dll

windows10-2004-x64

8

RootRAT/Pl...ic.dll

windows7-x64

1

RootRAT/Pl...ic.dll

windows10-2004-x64

8

RootRAT/Pl...lg.dll

windows7-x64

3

RootRAT/Pl...lg.dll

windows10-2004-x64

8

RootRAT/Plugin/pw.dll

windows7-x64

3

RootRAT/Plugin/pw.dll

windows10-2004-x64

8

RootRAT/Pl...c2.dll

windows7-x64

1

RootRAT/Pl...c2.dll

windows10-2004-x64

8

RootRAT/Stub.ps1

windows7-x64

3

RootRAT/Stub.ps1

windows10-2004-x64

8

RootRAT/WinMM.Net.dll

windows7-x64

1

RootRAT/WinMM.Net.dll

windows10-2004-x64

8

RootRAT/nj...og.rtf

windows7-x64

4

RootRAT/nj...og.rtf

windows10-2004-x64

8

Resubmissions

14-02-2025 19:38

250214-ycpdzsxmck 10

14-02-2025 19:38

250214-ycd81sxqav 8

14-02-2025 19:35

250214-yanpnsxlhn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RootRAT.rar

  • Size

    8.7MB

  • MD5

    3001959ffa3eb5d7a2137ed8c6742220

  • SHA1

    fcf3527d9acb615d87d7f755775c9a11ea5856c9

  • SHA256

    ee21f7603068571e079668c4db4fc4b71e52e4056de57475a4de0e9a69dc1c39

  • SHA512

    3880eab40cb28c64591d57989fa09bb112416031b3fb39c8bf71429efdd4ceb9b91a7cf18d4aff5a6e53bd1d70c6483b2680a33496fbc416316379e478689eb1

  • SSDEEP

    196608:u3zbdzrRceeFK4JJU5KUhAu/aF6EfGcTwZJThYjBOKvjXi5GTYSyKirX:udrCrK7KUhA0VcTeTuXW5GcS6

Score
3/10

Malware Config

Signatures

  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • RootRAT.rar
    .rar
  • RootRAT/GeoIP.dat
  • RootRAT/Plugin/cam.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Plugin/ch.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Plugin/mic.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Plugin/plg.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Plugin/pw.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Plugin/sc2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/Sound/sound.wav
  • RootRAT/Sound/welcome.wav
  • RootRAT/Stub.il
    .ps1
  • RootRAT/Stub.manifest
    .xml
  • RootRAT/WinMM.Net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • RootRAT/icon.ico
  • RootRAT/nj_users/WINDOWS7_X64_Bilal Khan_B24AD1B6/Keylog.rtf
    .rtf
  • RootRAT/ubuntu-font-family-0.83.zip
    .zip
  • ubuntu-font-family-0.83/CONTRIBUTING.txt
  • ubuntu-font-family-0.83/FONTLOG.txt
  • ubuntu-font-family-0.83/LICENCE-FAQ.txt
  • ubuntu-font-family-0.83/LICENCE.txt
  • ubuntu-font-family-0.83/README.txt
  • ubuntu-font-family-0.83/TRADEMARKS.txt
  • ubuntu-font-family-0.83/Ubuntu-B.ttf
  • ubuntu-font-family-0.83/Ubuntu-BI.ttf
  • ubuntu-font-family-0.83/Ubuntu-C.ttf
  • ubuntu-font-family-0.83/Ubuntu-L.ttf
  • ubuntu-font-family-0.83/Ubuntu-LI.ttf
  • ubuntu-font-family-0.83/Ubuntu-M.ttf
  • ubuntu-font-family-0.83/Ubuntu-MI.ttf
  • ubuntu-font-family-0.83/Ubuntu-R.ttf
  • ubuntu-font-family-0.83/Ubuntu-RI.ttf
  • ubuntu-font-family-0.83/UbuntuMono-B.ttf
  • ubuntu-font-family-0.83/UbuntuMono-BI.ttf
  • ubuntu-font-family-0.83/UbuntuMono-R.ttf
  • ubuntu-font-family-0.83/UbuntuMono-RI.ttf
  • ubuntu-font-family-0.83/copyright.txt
  • RootRAT/яσσтRAT.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • RootRAT/яσσтRAT.exe.config
    .xml
  • RootRAT/яσσтRAT.pdb
  • RootRAT/яσσтRAT.vshost.exe.config
    .xml
  • RootRAT/яσσтRAT.vshost.exe.manifest
  • RootRAT/яσσтRAT.xml