Overview

overview

10

Static

static

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd26b88c1d59a173c2d183fa24b40d5452685a4686d52acab8f6d1f6b8a1f2d7

  • Size

    495KB

  • Sample

    221002-18p2haeehq

  • MD5

    f617dc0ef20d4e72ffd6bc77dd369015

  • SHA1

    0d42af92a721dfb973da334263db1171924cb7b6

  • SHA256

    bd26b88c1d59a173c2d183fa24b40d5452685a4686d52acab8f6d1f6b8a1f2d7

  • SHA512

    0b39e90dadf556df5a74e8eb1cc1ebd5b2263a3f3e42d9430bb61446aac2df8beced2df3f00840d92ed05954c90043cce80d3a0c58a9d804136c057bbffee08c

  • SSDEEP

    12288:2iT5fZPOxHPJHAVwGoh7tfw1h8BvgcNW9eoRmotAG8TJ1k:2iT5fZwxHigBfw1h8KcPemotm

Score
10/10
arrowratrat

Malware Config

Targets

    • Target

      bd26b88c1d59a173c2d183fa24b40d5452685a4686d52acab8f6d1f6b8a1f2d7

    • Size

      495KB

    • MD5

      f617dc0ef20d4e72ffd6bc77dd369015

    • SHA1

      0d42af92a721dfb973da334263db1171924cb7b6

    • SHA256

      bd26b88c1d59a173c2d183fa24b40d5452685a4686d52acab8f6d1f6b8a1f2d7

    • SHA512

      0b39e90dadf556df5a74e8eb1cc1ebd5b2263a3f3e42d9430bb61446aac2df8beced2df3f00840d92ed05954c90043cce80d3a0c58a9d804136c057bbffee08c

    • SSDEEP

      12288:2iT5fZPOxHPJHAVwGoh7tfw1h8BvgcNW9eoRmotAG8TJ1k:2iT5fZwxHigBfw1h8KcPemotm

    Score
    10/10
    arrowratrat

    • ArrowRat

      Remote access tool with various capabilities first seen in late 2021.

      ratarrowrat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks