General

  • Target

    RatClient.exe

  • Size

    76.7MB

  • Sample

    240524-zhemeaad9v

  • MD5

    a9a9accfda6bb250f4de5ea619356b1e

  • SHA1

    5e9ddb7b27f67c42d6c9e0cf5d20232282d8ede6

  • SHA256

    64e170f651391d1160a3906671ac2690ded5512dd74f3931763de3450663c979

  • SHA512

    ad8c93b454d45b6471bd026fac47429e18faab2990bb250fba1712fcc030f339a5695816613e094010b9b85aaa193ca65c89dd82a0a7f5a2c54d33c19fd322c6

  • SSDEEP

    1572864:oQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:otGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

Score
7/10

Malware Config

Targets

    • Target

      RatClient.exe

    • Size

      76.7MB

    • MD5

      a9a9accfda6bb250f4de5ea619356b1e

    • SHA1

      5e9ddb7b27f67c42d6c9e0cf5d20232282d8ede6

    • SHA256

      64e170f651391d1160a3906671ac2690ded5512dd74f3931763de3450663c979

    • SHA512

      ad8c93b454d45b6471bd026fac47429e18faab2990bb250fba1712fcc030f339a5695816613e094010b9b85aaa193ca65c89dd82a0a7f5a2c54d33c19fd322c6

    • SSDEEP

      1572864:oQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:otGt/VG6RmtCRlGPrcG2qHO5iVZecyVP

    Score
    7/10
    • Drops startup file

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks