A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno RAT, and cloned/derivative RAT families.
As an analyst, it would be convenient to have the SHA256 listed as well as the file name, for more clarity in which file is examined, as well as to allow intuitive parsing of files with the same name.
As an analyst, it would be convenient to have the SHA256 listed as well as the file name, for more clarity in which file is examined, as well as to allow intuitive parsing of files with the same name.