Overview

overview

10

Static

static

7

exe.exe

windows7-x64

10

exe.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    exe.exe.v

  • Size

    397KB

  • Sample

    241003-hdde4staph

  • MD5

    46b5d44d29911bcdea1872e2e9ec03fe

  • SHA1

    be305cc977f0ff4829dc2d4cb81065b923513420

  • SHA256

    377fa7f44247db1b4f9072114fa2b18509519190dae873eb93210e4028a0828a

  • SHA512

    6191e4e8ec8655fb82d6d527dd515632930677e7c1d900271928218f4bbe3e53cf2aabcbef5c1b27de6fae02d638d9a97fd409c43446ea19fcae22f015c2d721

  • SSDEEP

    6144:NdIE/IurMwlZPTOmTua2uQl9DeQkqvyXMVqcSBIGNBrfwJBCnqm:Z/zn6maxuQl9DeQkqa8V8XNBrw+

Score
10/10
fatalrataspackv2discoveryinfostealerratvmprotect

Malware Config

Targets

    • Target

      exe.exe.v

    • Size

      397KB

    • MD5

      46b5d44d29911bcdea1872e2e9ec03fe

    • SHA1

      be305cc977f0ff4829dc2d4cb81065b923513420

    • SHA256

      377fa7f44247db1b4f9072114fa2b18509519190dae873eb93210e4028a0828a

    • SHA512

      6191e4e8ec8655fb82d6d527dd515632930677e7c1d900271928218f4bbe3e53cf2aabcbef5c1b27de6fae02d638d9a97fd409c43446ea19fcae22f015c2d721

    • SSDEEP

      6144:NdIE/IurMwlZPTOmTua2uQl9DeQkqvyXMVqcSBIGNBrfwJBCnqm:Z/zn6maxuQl9DeQkqa8V8XNBrw+

    Score
    10/10
    fatalratdiscoveryinfostealerratvmprotect

    • FatalRat

      FatalRat is a modular infostealer family written in C++ first appearing in June 2021.

      infostealerratfatalrat

    • Fatal Rat payload

      ratinfostealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks