General

  • Target

    RatClient.exe

  • Size

    76.7MB

  • Sample

    240524-yeebssgg3y

  • MD5

    302b4077fb86f8620cfb2cec572af071

  • SHA1

    e3f1509cc0b5127e0eb823e31ef04fc63dab2a06

  • SHA256

    9e59af315361ac5fd09187ecefe266c5349987236e68430c8d9382a7f98ae445

  • SHA512

    aa1295bc3b1de48c5febe5a3ff73cb666509c3b85648ec49c38b0a1562b4ad013c290154825ebf38b26152b29fc559db74c68b0dcfaab5cde526cac7d4f9211f

  • SSDEEP

    1572864:zQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:ztGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

Score
7/10

Malware Config

Targets

    • Target

      RatClient.exe

    • Size

      76.7MB

    • MD5

      302b4077fb86f8620cfb2cec572af071

    • SHA1

      e3f1509cc0b5127e0eb823e31ef04fc63dab2a06

    • SHA256

      9e59af315361ac5fd09187ecefe266c5349987236e68430c8d9382a7f98ae445

    • SHA512

      aa1295bc3b1de48c5febe5a3ff73cb666509c3b85648ec49c38b0a1562b4ad013c290154825ebf38b26152b29fc559db74c68b0dcfaab5cde526cac7d4f9211f

    • SSDEEP

      1572864:zQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:ztGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

    Score
    7/10
    • Drops startup file

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks