ratty | e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0 | Triage

Submit
Reports

Overview

overview

Static

static

e7c36e5ed6...a0.msi

windows7_x64

8

e7c36e5ed6...a0.msi

windows10-2004_x64

6

Sharing

General

Target

e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0
Size

382KB
Sample

220213-pn5exahgg7
MD5

48a5714147ee85374ab74174a82ab77a
SHA1

0013477c69c58afeef76436164a2de0eb29459be
SHA256

e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0
SHA512

c3729f30b1140fcd7a28d34689038f3534b5ce7289ae69a18bd6da15374fadb5a76dd47e32c50fbeb81950157dfe75c287e14c7aa61d0e901e0f5326bf93a2ca

Score

10^/10

ratty

Static task

static1

Behavioral task

behavioral1

Sample

e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0.msi

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0.msi

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0
- Size
  
  382KB
- MD5
  
  48a5714147ee85374ab74174a82ab77a
- SHA1
  
  0013477c69c58afeef76436164a2de0eb29459be
- SHA256
  
  e7c36e5ed6e3b409a20ce37d4604efb2d69ba7c146996ca8f1c0c1bcd72e81a0
- SHA512
  
  c3729f30b1140fcd7a28d34689038f3534b5ce7289ae69a18bd6da15374fadb5a76dd47e32c50fbeb81950157dfe75c287e14c7aa61d0e901e0f5326bf93a2ca
Score

8^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy