bruteratel | a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727 | Triage

Submit
Reports

Overview

overview

Static

static

1

a1b4db93eb...27.dll

windows7-x64

a1b4db93eb...27.dll

windows10-2004-x64

Sharing

General

Target

a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727.exe
Size

2.5MB
Sample

250319-hzd9jatvgv
MD5

1e804d6e0206af158acc9758f9fff87d
SHA1

596dd881f26f05a41baa862a54d12c3b31adb0e6
SHA256

a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727
SHA512

e9d0dca12ef47f72bf1e865bb3272f73c309dabe329ee411e87a22c3e3014fbc27fca53c31caf8cdbc52ea7b545e5374bc7d249befca4159ad604403a3291d46
SSDEEP

49152:FZzQqIEjvDQPOnRemSBn/VSlsBzXHWjIydNb:FYB5ydNb

Score

10^/10

bruteratel backdoor

Static task

static1

Behavioral task

behavioral1

Sample

a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727.dll

Resource

win7-20241023-en

bruteratel backdoor

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727.dll

Resource

win10v2004-20250314-en

bruteratel backdoor

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727.exe
- Size
  
  2.5MB
- MD5
  
  1e804d6e0206af158acc9758f9fff87d
- SHA1
  
  596dd881f26f05a41baa862a54d12c3b31adb0e6
- SHA256
  
  a1b4db93eb72a520878ad338d66313fbaeab3634000fb7c69b1c34c9f3e17727
- SHA512
  
  e9d0dca12ef47f72bf1e865bb3272f73c309dabe329ee411e87a22c3e3014fbc27fca53c31caf8cdbc52ea7b545e5374bc7d249befca4159ad604403a3291d46
- SSDEEP
  
  49152:FZzQqIEjvDQPOnRemSBn/VSlsBzXHWjIydNb:FYB5ydNb
Score

10^/10

bruteratel backdoor
- Brute Ratel C4
  A customized command and control framework for red teaming and adversary simulation.
  backdoor bruteratel
- Bruteratel family
  bruteratel
- Detect BruteRatel badger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bruteratelbackdoor

behavioral2

bruteratelbackdoor

© 2018-2025

Terms | Privacy