General

  • Target

    RatClient.exe

  • Size

    76.7MB

  • Sample

    240524-yjdaasgh7s

  • MD5

    a0ff84937feea2478534a3299496e881

  • SHA1

    e860de1256708f75e0d0eb20f7a2c3ddfc5608ea

  • SHA256

    15bf69032984eb8ca0bf88fd2f6eaddf7f9e5f2f910f982d976359d9b83fa807

  • SHA512

    d5ce40bc28b2a38133095400da286df479ecc79e0a5a44133176a75f7eee26a5ff659ca873aeb68294a3394fa476a8d5038da0f74d08ababc056a95f00e2588b

  • SSDEEP

    1572864:+QLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:+tGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

Score
7/10

Malware Config

Targets

    • Target

      RatClient.exe

    • Size

      76.7MB

    • MD5

      a0ff84937feea2478534a3299496e881

    • SHA1

      e860de1256708f75e0d0eb20f7a2c3ddfc5608ea

    • SHA256

      15bf69032984eb8ca0bf88fd2f6eaddf7f9e5f2f910f982d976359d9b83fa807

    • SHA512

      d5ce40bc28b2a38133095400da286df479ecc79e0a5a44133176a75f7eee26a5ff659ca873aeb68294a3394fa476a8d5038da0f74d08ababc056a95f00e2588b

    • SSDEEP

      1572864:+QLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:+tGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

    Score
    7/10
    • Drops startup file

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks