Overview

overview

10

Static

static

3

Rz_launcher Setup.exe

windows7-x64

10

Rz_launcher Setup.exe

windows10-2004-x64

8

lib/activation.jar

windows7-x64

1

lib/activation.jar

windows10-2004-x64

7

lib/asm-all.jar

windows7-x64

1

lib/asm-all.jar

windows10-2004-x64

7

lib/commons-email.jar

windows7-x64

1

lib/commons-email.jar

windows10-2004-x64

7

lib/dn-com...le.jar

windows7-x64

1

lib/dn-com...le.jar

windows10-2004-x64

7

lib/dn-php-sdk.jar

windows7-x64

1

lib/dn-php-sdk.jar

windows10-2004-x64

7

lib/gson.jar

windows7-x64

1

lib/gson.jar

windows10-2004-x64

7

lib/jfoenix.jar

windows7-x64

1

lib/jfoenix.jar

windows10-2004-x64

7

lib/jkeymaster.jar

windows7-x64

1

lib/jkeymaster.jar

windows10-2004-x64

7

lib/jna.jar

windows7-x64

7

lib/jna.jar

windows10-2004-x64

7

lib/jphp-a...rk.jar

windows7-x64

1

lib/jphp-a...rk.jar

windows10-2004-x64

7

lib/jphp-core.jar

windows7-x64

1

lib/jphp-core.jar

windows10-2004-x64

7

lib/jphp-d...xt.jar

windows7-x64

1

lib/jphp-d...xt.jar

windows10-2004-x64

7

lib/jphp-d...xt.jar

windows7-x64

1

lib/jphp-d...xt.jar

windows10-2004-x64

7

lib/jphp-gui-ext.jar

windows7-x64

1

lib/jphp-gui-ext.jar

windows10-2004-x64

7

lib/jphp-g...xt.jar

windows7-x64

1

lib/jphp-g...xt.jar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ratts.zip

  • Size

    7.9MB

  • MD5

    87238993b749c545b19fc462e0741899

  • SHA1

    42f833cf062633e93f2a9d43f1b9d0a55e8c3f23

  • SHA256

    67b782e3f95818c291ff4dcbac8342f0ef89f3ac0d42042e746118f2c3da1572

  • SHA512

    1468bb84a224417d1e21303f25ddb1274b38bd7fb1aaa7b5d2fa94ed183f319cfe0fc3fb5d6683c0783b691a35b6fd908f215f07d1472ad4c953a6f6875dc293

  • SSDEEP

    196608:Pp58T3AU1YqZvlOyRaOO/tUgBi0SX/bijf9:Be3j1YWxRzgtUgjYbSF

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ratts.zip
    .zip
  • Rz_launcher Setup.exe
    .exe windows:4 windows x86 arch:x86

    6011984d7c1f1b97a34d7517a498bff8


    Headers

    Imports

    Sections

  • lib/activation.jar
    .jar
  • lib/asm-all.jar
    .jar
  • lib/commons-email.jar
    .jar
  • lib/dn-compiled-module.jar
    .jar
  • lib/dn-php-sdk.jar
    .jar
  • lib/gson.jar
    .jar
  • lib/jfoenix.jar
    .jar
  • lib/jkeymaster.jar
    .jar
  • lib/jna.jar
    .jar
  • lib/jphp-app-framework.jar
    .jar
  • lib/jphp-core.jar
    .jar
  • lib/jphp-desktop-ext.jar
    .jar
  • lib/jphp-desktop-hotkey-ext.jar
    .jar
  • lib/jphp-gui-ext.jar
    .jar
  • lib/jphp-gui-jfoenix-ext.jar
    .jar
  • lib/jphp-json-ext.jar
    .jar
  • lib/jphp-jsoup-ext.jar
    .jar
  • lib/jphp-mail-ext.jar
    .jar
  • lib/jphp-runtime.jar
    .jar
  • lib/jphp-systemtray-ext.jar
    .jar
  • lib/jphp-xml-ext.jar
    .jar
  • lib/jphp-zend-ext.jar
    .jar
  • lib/jphp-zip-ext.jar
    .jar
  • lib/jsoup.jar
    .jar
  • lib/mail.jar
    .jar
  • lib/slf4j-api.jar
    .jar
  • lib/slf4j-simple.jar
    .jar
  • lib/zt-zip.jar
    .jar