fatalrat | 563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e | Triage

Submit
Reports

Overview

overview

Static

static

3

563f31f303...1e.exe

windows7-x64

563f31f303...1e.exe

windows10-2004-x64

Sharing

General

Target

563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e
Size

4.4MB
Sample

241202-vmsydayqem
MD5

47febfc18d8ac366531eb57487a46beb
SHA1

bce07154cc505d99dcc95ad2167d7979692af0b7
SHA256

563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e
SHA512

397cc52d7ca018a982602c0857779e80ca4d46b8f75fb7bd27515cc954343fe5303ec8f22bca3f6a4f9c621831429dbaa9dc718463d0db7df55056b7c32bc123
SSDEEP

49152:9YJMpJc32PMgJjQhGp7fOU3h1hyiTrMIx7Rtpb68N54+97boAXuE+OPnmr7DvjZV:9Og51Mgr/txTbV7+6

Score

10^/10

fatalrat discovery infostealer rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e.exe

Resource

win7-20241010-en

fatalrat discovery infostealer rat

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e.exe

Resource

win10v2004-20241007-en

fatalrat discovery infostealer rat

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e
- Size
  
  4.4MB
- MD5
  
  47febfc18d8ac366531eb57487a46beb
- SHA1
  
  bce07154cc505d99dcc95ad2167d7979692af0b7
- SHA256
  
  563f31f303446a6ddab50a027b3a66cad2da2ddb33c9b8eba16a62a2e73baf1e
- SHA512
  
  397cc52d7ca018a982602c0857779e80ca4d46b8f75fb7bd27515cc954343fe5303ec8f22bca3f6a4f9c621831429dbaa9dc718463d0db7df55056b7c32bc123
- SSDEEP
  
  49152:9YJMpJc32PMgJjQhGp7fOU3h1hyiTrMIx7Rtpb68N54+97boAXuE+OPnmr7DvjZV:9Og51Mgr/txTbV7+6
Score

10^/10

fatalrat discovery infostealer rat
- FatalRat
  FatalRat is a modular infostealer family written in C++ first appearing in June 2021.
  infostealer rat fatalrat
- Fatalrat family
  fatalrat
- Fatal Rat payload
  rat infostealer
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

fatalratdiscoveryinfostealerrat

behavioral2

fatalratdiscoveryinfostealerrat

© 2018-2024

Terms | Privacy