arrowrat | 71f2f3f6a9837f800cf241a908881c9aa3984901f85da37fdf1b227f0c462265 | Triage

Sharing

General

Target

1140-145-0x0000000000400000-0x000000000042C000-memory.dmp
Size

176KB
Sample

221209-y9ldlaha9x
MD5

461bb1b9b0f8d5ff24337b07462fccec
SHA1

b4dfa34cb03b508386f472487ec212d260c449c1
SHA256

71f2f3f6a9837f800cf241a908881c9aa3984901f85da37fdf1b227f0c462265
SHA512

c9c54f256d09ebf124306569ff9599d89305fa6047f88b87ab58c602d9eb5fd23b9351a7b03be717ce057b4e30898ea7dceae6401da7df346b20a570eb6fa1ef
SSDEEP

3072:+bRR+0O5VbFHexuiCrK0ovzNC0Fie+5cVjvn+sZCh8/QbC768Y:+bRU0OLoxuiCNovpke+cvnOaQ38

Score

10^/10

arrowrat client

Malware Config

Extracted

Family

arrowrat

Botnet

Client

C2

185.246.221.202:17168

Mutex

WcOErhAdu

Targets

- Target
  
  1140-145-0x0000000000400000-0x000000000042C000-memory.dmp
- Size
  
  176KB
- MD5
  
  461bb1b9b0f8d5ff24337b07462fccec
- SHA1
  
  b4dfa34cb03b508386f472487ec212d260c449c1
- SHA256
  
  71f2f3f6a9837f800cf241a908881c9aa3984901f85da37fdf1b227f0c462265
- SHA512
  
  c9c54f256d09ebf124306569ff9599d89305fa6047f88b87ab58c602d9eb5fd23b9351a7b03be717ce057b4e30898ea7dceae6401da7df346b20a570eb6fa1ef
- SSDEEP
  
  3072:+bRR+0O5VbFHexuiCrK0ovzNC0Fie+5cVjvn+sZCh8/QbC768Y:+bRU0OLoxuiCNovpke+cvnOaQ38
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2