General
-
Target
RatClient.exe
-
Size
76.7MB
-
Sample
240524-yjdaasgh7s
-
MD5
a0ff84937feea2478534a3299496e881
-
SHA1
e860de1256708f75e0d0eb20f7a2c3ddfc5608ea
-
SHA256
15bf69032984eb8ca0bf88fd2f6eaddf7f9e5f2f910f982d976359d9b83fa807
-
SHA512
d5ce40bc28b2a38133095400da286df479ecc79e0a5a44133176a75f7eee26a5ff659ca873aeb68294a3394fa476a8d5038da0f74d08ababc056a95f00e2588b
-
SSDEEP
1572864:+QLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:+tGt/VG6RmtCRlGPrcG2qHO5iVZecyVP
Behavioral task
behavioral1
Sample
RatClient.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
RatClient.exe
-
Size
76.7MB
-
MD5
a0ff84937feea2478534a3299496e881
-
SHA1
e860de1256708f75e0d0eb20f7a2c3ddfc5608ea
-
SHA256
15bf69032984eb8ca0bf88fd2f6eaddf7f9e5f2f910f982d976359d9b83fa807
-
SHA512
d5ce40bc28b2a38133095400da286df479ecc79e0a5a44133176a75f7eee26a5ff659ca873aeb68294a3394fa476a8d5038da0f74d08ababc056a95f00e2588b
-
SSDEEP
1572864:+QLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:+tGt/VG6RmtCRlGPrcG2qHO5iVZecyVP
Score7/10-
Drops startup file
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-