Overview

overview

10

Static

static

10

611f479e0b...7b.exe

windows7-x64

611f479e0b...7b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    611f479e0b4bf0f32cf1a5295341117b

  • Size

    8.1MB

  • Sample

    241110-ymemjatjhv

  • MD5

    611f479e0b4bf0f32cf1a5295341117b

  • SHA1

    a9136e2fbe4f23ac0e3e232bac55a3aa2afd2f7d

  • SHA256

    0e3af16ff0398d0691732b542ba834f33600699bd61df7f300362ec0374c648d

  • SHA512

    fc612ece8a61c10dd6203a6a796a585a755170c30ddb60d1fdc25725ea83acea2d70f89fc67a0fc935bde44402203db6dd9be67ce96f6f1ea169a4ba99bc2c55

  • SSDEEP

    196608:++9MGrMaA1hWg6PQiHV5/SAGocGiiAh0B4:++SvaBTPQiHV56icB

Score
10/10
sectopratdiscoveryratthemidatrojan

Malware Config

Targets

    • Target

      611f479e0b4bf0f32cf1a5295341117b

    • Size

      8.1MB

    • MD5

      611f479e0b4bf0f32cf1a5295341117b

    • SHA1

      a9136e2fbe4f23ac0e3e232bac55a3aa2afd2f7d

    • SHA256

      0e3af16ff0398d0691732b542ba834f33600699bd61df7f300362ec0374c648d

    • SHA512

      fc612ece8a61c10dd6203a6a796a585a755170c30ddb60d1fdc25725ea83acea2d70f89fc67a0fc935bde44402203db6dd9be67ce96f6f1ea169a4ba99bc2c55

    • SSDEEP

      196608:++9MGrMaA1hWg6PQiHV5/SAGocGiiAh0B4:++SvaBTPQiHV56icB

    Score
    10/10
    sectopratdiscoveryratthemidatrojan

    • SectopRAT

      SectopRAT is a remote access trojan first seen in November 2019.

      trojanratsectoprat

    • SectopRAT payload

    • Sectoprat family

      sectoprat

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks