Overview

overview

10

Static

static

10

Remote Adm...p1.exe

windows10-2004-x64

1

Remote Adm...db.dll

windows10-2004-x64

1

Remote Adm...ks.dll

windows10-2004-x64

1

Remote Adm...T).exe

windows10-2004-x64

10

Remote Adm...ub.exe

windows10-2004-x64

10

Remote Adm...db.dll

windows10-2004-x64

1

Remote Adm...ks.dll

windows10-2004-x64

1

Remote Adm...ix.exe

windows10-2004-x64

10

Remote Adm...x1.exe

windows10-2004-x64

7

Remote Adm...ub.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    105s
  • max time network
    139s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/04/2025, 18:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Remote Administration Tool (RAT)/ConsoleApp1.exe

  • Size

    6KB

  • MD5

    65b7dd9376f29f87d752de844959a3b3

  • SHA1

    9f7dd0a81bdb61c6e7b52aa4656b63cae27fc7b0

  • SHA256

    bda7b191c57f03dac42b18bcca21edb0627854d3a81386a174d72737aa7186e8

  • SHA512

    a5780071dcdbb4bb65a5609a6311e7cff6fc29709458cf11abec210b568dee8b8e9460065f7109713d4bece434443e4757ecb15b86e6b507886573d794c01986

  • SSDEEP

    48:6lQFWe88sFwau1S95ChVh909zL6+ifOVvTBOzuQMrsKXj1Uv7a/tdlr59aU6yLKY:N8sgqEVLM+To5op7P9ezNt

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Remote Administration Tool (RAT)\ConsoleApp1.exe
    "C:\Users\Admin\AppData\Local\Temp\Remote Administration Tool (RAT)\ConsoleApp1.exe"
    1⤵
      PID:3968

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3968-0-0x00007FFE58D83000-0x00007FFE58D85000-memory.dmp

      Filesize

      8KB

      Download

    • memory/3968-1-0x000001B033EB0000-0x000001B033EB8000-memory.dmp

      Filesize

      32KB

      Download