fatalrat | 34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289 | Triage

Submit
Reports

Overview

overview

Static

static

7

34c70475f6...89.exe

windows7-x64

34c70475f6...89.exe

windows10-2004-x64

Sharing

General

Target

34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289
Size

176KB
Sample

230217-znp1bshd72
MD5

b51790ddbba1775b3d4a2c2d21f8b138
SHA1

b118e50acb76fc7078a28d68260972d594e75bb3
SHA256

34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289
SHA512

3981108313ac2f5fdebe062f11c6e6297de589de4adf1e4307a300e4bb4fb1d1d8b994acf0ee4f11c6a0a0351f600f17afa2107a47bec58d8caa6510fc36750e
SSDEEP

3072:ZU+rdTSw8IPpU+FsXdmH64W/qNEwwCioeFNdRFjHUGkKsWJcdKi7IW8:ZjrdWmPCBA6YHHcF6WGdKCP

Score

10^/10

fatalrat aspackv2 infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289.exe

Resource

win7-20221111-en

fatalrat aspackv2 infostealer rat

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289.exe

Resource

win10v2004-20221111-en

fatalrat aspackv2 infostealer rat

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289
- Size
  
  176KB
- MD5
  
  b51790ddbba1775b3d4a2c2d21f8b138
- SHA1
  
  b118e50acb76fc7078a28d68260972d594e75bb3
- SHA256
  
  34c70475f657861d20276abb440d9c8d02ad393e7f0769ad3a74c1cdc8f2b289
- SHA512
  
  3981108313ac2f5fdebe062f11c6e6297de589de4adf1e4307a300e4bb4fb1d1d8b994acf0ee4f11c6a0a0351f600f17afa2107a47bec58d8caa6510fc36750e
- SSDEEP
  
  3072:ZU+rdTSw8IPpU+FsXdmH64W/qNEwwCioeFNdRFjHUGkKsWJcdKi7IW8:ZjrdWmPCBA6YHHcF6WGdKCP
Score

10^/10

fatalrat aspackv2 infostealer rat
- FatalRat
  FatalRat is a modular infostealer family written in C++ first appearing in June 2021.
  infostealer rat fatalrat
- Fatal Rat payload
  rat infostealer
- Downloads MZ/PE file
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fatalrataspackv2infostealerrat

behavioral2

fatalrataspackv2infostealerrat

© 2018-2025

Terms | Privacy