ratty | 5541dc1c84b41dd0f372e04fcf1cafac268751b8794e9fc08f96cc741876981e | Triage

Sharing

General

Target

5541dc1c84b41dd0f372e04fcf1cafac268751b8794e9fc08f96cc741876981e
Size

155KB
Sample

220520-d557zsgae8
MD5

3cdb24fe02d9cdc49831a2c9884eeda0
SHA1

29ed60418b86b77c2cc1b817d075d77e41687923
SHA256

5541dc1c84b41dd0f372e04fcf1cafac268751b8794e9fc08f96cc741876981e
SHA512

bd71fe32154729ad4512d7d7e8c571ec430a9e869922930729a57d9ad2410182fe911949a61abc802fb4d80e54e48eede0c8e7ab464d767a32b49b812a413754

Score

10^/10

ratty persistence

Malware Config

Targets

- Target
  
  5541dc1c84b41dd0f372e04fcf1cafac268751b8794e9fc08f96cc741876981e
- Size
  
  155KB
- MD5
  
  3cdb24fe02d9cdc49831a2c9884eeda0
- SHA1
  
  29ed60418b86b77c2cc1b817d075d77e41687923
- SHA256
  
  5541dc1c84b41dd0f372e04fcf1cafac268751b8794e9fc08f96cc741876981e
- SHA512
  
  bd71fe32154729ad4512d7d7e8c571ec430a9e869922930729a57d9ad2410182fe911949a61abc802fb4d80e54e48eede0c8e7ab464d767a32b49b812a413754
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2