ratty | 0665b4b801737bf3735c8be1f284496db695092f86d2e91101a66fbd995e4f52 | Triage

Submit
Reports

Overview

overview

Static

static

69c7cff720...65.jar

windows10-2004_x64

Sharing

General

Target

5670056086896640.zip
Size

1.2MB
Sample

220224-qst1eaecgj
MD5

834bafc592d3059fd3cfb76cf03b1080
SHA1

6198b834af98fb04860590adf396b1a84cb9e79c
SHA256

0665b4b801737bf3735c8be1f284496db695092f86d2e91101a66fbd995e4f52
SHA512

937a11fce2e3d0c6dd9a317f52cd2bac64b6e1c4a36b7afcf0cc88af268a0e7dca77df739993a4e1d9faab5f5aa64a7962bb922969e53c0b75585985a81fac6c

Score

10^/10

ratty persistence rat trojan

Static task

static1

Behavioral task

behavioral1

Sample

69c7cff720ef3ec72773052fb482d36dbcf4362ea76e9448ad4ec84a4b227b65.jar

Resource

win10v2004-en-20220112

ratty persistence rat trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  69c7cff720ef3ec72773052fb482d36dbcf4362ea76e9448ad4ec84a4b227b65
- Size
  
  1.2MB
- MD5
  
  c2e2693cb5bb595145fe6ed7cd902dbb
- SHA1
  
  87a86a42ef899b16d0a899ceb2814683f68cb213
- SHA256
  
  69c7cff720ef3ec72773052fb482d36dbcf4362ea76e9448ad4ec84a4b227b65
- SHA512
  
  0581d78a0cfb72c20021521d1b7619aa2826a1cd1b4519312aaed4c7a9daf1b0798cd980bd2eca3d9424163a7440e9bb3a7925e50a4442b1821dde374dc31053
Score

10^/10

ratty persistence rat trojan
- Ratty
  Ratty is an open source Java Remote Access Tool.
  trojan rat ratty
- Ratty Rat Payload
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rattypersistencerattrojan

© 2018-2024

Terms | Privacy