Overview

overview

10

Static

static

10

BOB SILVER...10.exe

windows7-x64

10

BOB SILVER...10.exe

windows10-2004-x64

10

BOB SILVER...11.exe

windows7-x64

10

BOB SILVER...11.exe

windows10-2004-x64

10

BOB SILVER...12.exe

windows7-x64

10

BOB SILVER...12.exe

windows10-2004-x64

10

BOB SILVER...13.exe

windows7-x64

10

BOB SILVER...13.exe

windows10-2004-x64

10

BOB SILVER...14.exe

windows7-x64

10

BOB SILVER...14.exe

windows10-2004-x64

10

BOB SILVER...15.exe

windows7-x64

10

BOB SILVER...15.exe

windows10-2004-x64

10

BOB SILVER...16.exe

windows7-x64

10

BOB SILVER...16.exe

windows10-2004-x64

10

BOB SILVER...17.exe

windows7-x64

10

BOB SILVER...17.exe

windows10-2004-x64

10

BOB SILVER...18.exe

windows7-x64

10

BOB SILVER...18.exe

windows10-2004-x64

10

BOB SILVER...19.exe

windows7-x64

10

BOB SILVER...19.exe

windows10-2004-x64

10

BOB SILVER... 2.exe

windows7-x64

10

BOB SILVER... 2.exe

windows10-2004-x64

10

BOB SILVER...20.exe

windows7-x64

10

BOB SILVER...20.exe

windows10-2004-x64

10

BOB SILVER...21.exe

windows7-x64

10

BOB SILVER...21.exe

windows10-2004-x64

10

BOB SILVER...22.exe

windows7-x64

10

BOB SILVER...22.exe

windows10-2004-x64

10

BOB SILVER...23.exe

windows7-x64

10

BOB SILVER...23.exe

windows10-2004-x64

10

BOB SILVER...24.exe

windows7-x64

10

BOB SILVER...24.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BOB SILVER CLIENTS GO BRRRRR.zip

  • Size

    742KB

  • MD5

    fae90a2becaaa5166df2e4cbeb3e877a

  • SHA1

    54ebed6331f513cd9c89c939419a862701b45103

  • SHA256

    2259e06eccb55249f28af3b1bd022a7843de21eb51fabd61f01f158a20fdfe96

  • SHA512

    18950c6e57c3dfdc0fc9a778faef60c336169e9fbd23ca554069b34b91e0b5a1a634fcc7677f5fda156e410ee5f5a183b314ef26d6f52298e47fc1ffa36e5b88

  • SSDEEP

    12288:u+bx9flpQyjMSHZxXPLdH6j+E+XZ2ZpQv:u+bx9flpQyjMSHZxXPLdH6j+E+XZ2Zpc

Score
10/10
silverrat

Malware Config

Extracted

Family

silverrat

Version

1.0.0.0

C2

if-eventually.gl.at.ply.gg:17094

Mutex

lAxDBRhAFu

Attributes
  • certificate

    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

  • decrypted_key

    -|S.S.S|-

  • discord

    https://discord.com/api/webhooks/1335679503938355221/lGcOUDspps04wapqxq013W8uYGPSCcmnxl9Q1xnWdBn45Ul8QBT-Qs2mjsdVNXfOtTCe

  • key

    yy6zDjAUmbB09pKvo5Hhug==

  • key_x509

    b0FGeVZNcFRMWVloVHR6Z0VESU5RdlpZUmxZbUFE

  • payload_url

    https://g.top4top.io/p_2522c7w8u1.png

  • reconnect_delay

    4

  • server_signature

    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

Signatures

  • Silverrat family
    silverrat
  • Unsigned PE 32 IoCs

    Checks for missing Authenticode signature.

Files

  • BOB SILVER CLIENTS GO BRRRRR.zip
    .zip
  • BOB SILVER CLIENTS GO BRRRRR/V 10.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 11.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 12.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 13.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 14.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 15.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 16.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 17.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 18.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 19.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 2.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 20.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 21.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 22.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 23.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 24.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 25.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 26.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 27.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 28.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 29.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 3.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 30.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 31.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 32.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 4.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 5.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 6.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 7.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 8.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V 9.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • BOB SILVER CLIENTS GO BRRRRR/V.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 10.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 11.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 12.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 13.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 14.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 15.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 16.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 17.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 18.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 19.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 2.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 20.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 21.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 22.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 23.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 24.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 25.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 26.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 27.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 28.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 29.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 3.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 30.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 31.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 32.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 4.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 5.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 6.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 7.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 8.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V 9.exe
  • __MACOSX/BOB SILVER CLIENTS GO BRRRRR/._V.exe

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.