General
-
Target
RatClient.exe
-
Size
76.7MB
-
Sample
240524-zhemeaad9v
-
MD5
a9a9accfda6bb250f4de5ea619356b1e
-
SHA1
5e9ddb7b27f67c42d6c9e0cf5d20232282d8ede6
-
SHA256
64e170f651391d1160a3906671ac2690ded5512dd74f3931763de3450663c979
-
SHA512
ad8c93b454d45b6471bd026fac47429e18faab2990bb250fba1712fcc030f339a5695816613e094010b9b85aaa193ca65c89dd82a0a7f5a2c54d33c19fd322c6
-
SSDEEP
1572864:oQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:otGt/VG6RmtCRlGPrcG2qHO5iVZecyVP
Behavioral task
behavioral1
Sample
RatClient.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
RatClient.exe
-
Size
76.7MB
-
MD5
a9a9accfda6bb250f4de5ea619356b1e
-
SHA1
5e9ddb7b27f67c42d6c9e0cf5d20232282d8ede6
-
SHA256
64e170f651391d1160a3906671ac2690ded5512dd74f3931763de3450663c979
-
SHA512
ad8c93b454d45b6471bd026fac47429e18faab2990bb250fba1712fcc030f339a5695816613e094010b9b85aaa193ca65c89dd82a0a7f5a2c54d33c19fd322c6
-
SSDEEP
1572864:oQLwaXnFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIG2qHWB75iVZGzcW7vqaCXA:otGt/VG6RmtCRlGPrcG2qHO5iVZecyVP
Score7/10-
Drops startup file
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-