fatalrat | 6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb | Triage

Submit
Reports

Overview

overview

Static

static

3

6827b4967a...fb.exe

windows7-x64

6827b4967a...fb.exe

windows10-2004-x64

Sharing

General

Target

6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb
Size

220KB
Sample

240323-sdqqjsgh54
MD5

dce8d927b4f3833acff622eb7e16da95
SHA1

7816fc514254ee0193de4c1c030a1bee228d5615
SHA256

6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb
SHA512

1b2e9d6ddb88259a593a10884801ec19a16de9e2d5810cf2690a0e8e8eb49ab76b034c5282a2925731199e6414cc5d1081bcaf9749662d46f0edf7efdc319cbf
SSDEEP

3072:Y1ltd5LZseWDzoPZ6WS6BLfvgaSlpcD+05f7OD6Zck:sSzkPDNGEfY6Zl

Score

10^/10

fatalrat infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb.exe

Resource

win7-20240221-en

fatalrat infostealer rat

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb.exe

Resource

win10v2004-20240319-en

fatalrat infostealer rat

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb
- Size
  
  220KB
- MD5
  
  dce8d927b4f3833acff622eb7e16da95
- SHA1
  
  7816fc514254ee0193de4c1c030a1bee228d5615
- SHA256
  
  6827b4967ac2ae69421ec2ac465d7cf5034ae7c32ce5cb29b0b1398a45468efb
- SHA512
  
  1b2e9d6ddb88259a593a10884801ec19a16de9e2d5810cf2690a0e8e8eb49ab76b034c5282a2925731199e6414cc5d1081bcaf9749662d46f0edf7efdc319cbf
- SSDEEP
  
  3072:Y1ltd5LZseWDzoPZ6WS6BLfvgaSlpcD+05f7OD6Zck:sSzkPDNGEfY6Zl
Score

10^/10

fatalrat infostealer rat
- FatalRat
  FatalRat is a modular infostealer family written in C++ first appearing in June 2021.
  infostealer rat fatalrat
- Fatal Rat payload
  rat infostealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fatalratinfostealerrat

behavioral2

fatalratinfostealerrat

© 2018-2024

Terms | Privacy