fatalrat | 685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73 | Triage

Submit
Reports

Overview

overview

Static

static

3

685dde158d...73.exe

windows7-x64

685dde158d...73.exe

windows10-2004-x64

Sharing

General

Target

685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73
Size

192KB
Sample

230515-hcrw4shd8x
MD5

b360990b86ddae9902108e6229ea9314
SHA1

f0d1f4df642a0835b9c3a330c150f9e2c9c4ce11
SHA256

685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73
SHA512

b77b66f0d37b9af38586cf4b37b72fef31b5c779a67ab6ddd43206b41c94285c559fecbc90fab5c02d9eb6ae9c84acdbf4d215c82915241574bcc7d9a38c57cc
SSDEEP

3072:T1ltd5LZseWDzoPZ6WS6BLfvgaSlpcD+05f:NSzkPDNGEf

Score

10^/10

fatalrat infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73.exe

Resource

win7-20230220-en

fatalrat infostealer rat

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73.exe

Resource

win10v2004-20230221-en

fatalrat infostealer rat

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73
- Size
  
  192KB
- MD5
  
  b360990b86ddae9902108e6229ea9314
- SHA1
  
  f0d1f4df642a0835b9c3a330c150f9e2c9c4ce11
- SHA256
  
  685dde158db35f724e25152cdd0c9e399c3e817c6447e50abd66767ad1e67e73
- SHA512
  
  b77b66f0d37b9af38586cf4b37b72fef31b5c779a67ab6ddd43206b41c94285c559fecbc90fab5c02d9eb6ae9c84acdbf4d215c82915241574bcc7d9a38c57cc
- SSDEEP
  
  3072:T1ltd5LZseWDzoPZ6WS6BLfvgaSlpcD+05f:NSzkPDNGEf
Score

10^/10

fatalrat infostealer rat
- FatalRat
  FatalRat is a modular infostealer family written in C++ first appearing in June 2021.
  infostealer rat fatalrat
- Fatal Rat payload
  rat infostealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fatalratinfostealerrat

behavioral2

fatalratinfostealerrat

© 2018-2025

Terms | Privacy