fatalrat | f74440af1892f606cf6451e65198161aad3860682c89493212d4bccdc8c79526 | Triage

Submit
Reports

Overview

overview

Static

static

3

f74440af.exe

windows10-2004-x64

Sharing

General

Target

f74440af.exe
Size

116KB
Sample

240117-hfar1aacfj
MD5

f31c2f7530ca8417e023cd63275fc471
SHA1

fc93c75f476e09c23bf8d2d784786e1d3378ff3b
SHA256

f74440af1892f606cf6451e65198161aad3860682c89493212d4bccdc8c79526
SHA512

769ff5d8a755df29cc35b80866a54bc51eaaf825b25e5574feeed1eafa282facb313c75e8662a7e408c8fa85c246904e6b8745205771cdc060cfc089f4850a61
SSDEEP

1536:C9f6Z8WQMVCLpcyHruGZdpgW/auSzeA8bE5+i42V9wf9S:TagVCLWGZdpT/auCeBbErzQ9S

Score

10^/10

fatalrat infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f74440af.exe

Resource

win10v2004-20231215-en

fatalrat infostealer rat

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  f74440af.exe
- Size
  
  116KB
- MD5
  
  f31c2f7530ca8417e023cd63275fc471
- SHA1
  
  fc93c75f476e09c23bf8d2d784786e1d3378ff3b
- SHA256
  
  f74440af1892f606cf6451e65198161aad3860682c89493212d4bccdc8c79526
- SHA512
  
  769ff5d8a755df29cc35b80866a54bc51eaaf825b25e5574feeed1eafa282facb313c75e8662a7e408c8fa85c246904e6b8745205771cdc060cfc089f4850a61
- SSDEEP
  
  1536:C9f6Z8WQMVCLpcyHruGZdpgW/auSzeA8bE5+i42V9wf9S:TagVCLWGZdpT/auCeBbErzQ9S
Score

10^/10

fatalrat infostealer rat
- FatalRat
  FatalRat is a modular infostealer family written in C++ first appearing in June 2021.
  infostealer rat fatalrat
- Fatal Rat payload
  rat infostealer
- Blocklisted process makes network request
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fatalratinfostealerrat

© 2018-2025

Terms | Privacy