fatalrat | 731e22f3ebb8d0a0f4eeeb93db7e51ea8428800c44dc626ef9d2d4985b96c2a2 | Triage

Sharing

General

Target

250307-n6g7natnvb_pw_infected.zip
Size

56KB
Sample

250319-v1tf3ay1ex
MD5

b3d8a53241e8bc973422a1aa0b791200
SHA1

ac9640626311d53f13ed2504fea421084f48b66b
SHA256

731e22f3ebb8d0a0f4eeeb93db7e51ea8428800c44dc626ef9d2d4985b96c2a2
SHA512

aad8e36375d81258b3619d378c2b7da4c54ed8dd8e9cbc08235267d6a3a8037f8434b93199671d6495a3f1b5e720d3f1a0006fd3328def48afe34c031a9944fe
SSDEEP

1536:yOfOnqIPXhanyonxZz3xxBWu3TY8K/CozlJxmKhG:LmqIfhanykjz3xhf8CopJxmf

Score

10^/10

fatalrat discovery infostealer rat

Malware Config

Extracted

Family

fatalrat

C2

45.195.148.182

Targets

- Target
  
  abb2cb43caecac0ca2dcba15ee1cdcc4499ffad18c06265de2ac2f811166d976
- Size
  
  116KB
- MD5
  
  787f2819d905d3fe684460143e01825c
- SHA1
  
  a95a908ac2a98fdadfea3d7b6002e9c712fa7865
- SHA256
  
  abb2cb43caecac0ca2dcba15ee1cdcc4499ffad18c06265de2ac2f811166d976
- SHA512
  
  025de91c03c3bbebd8537d14352b4751d1007c7fa86f7f6d232e8b684dd216b2b2aa0a646f830e9e1d6b1e0b84c4e80b78c7ea7a9deececce20930b396893ced
- SSDEEP
  
  3072:YJuATOEYg5xP3wXmyN4EtTBfcra56WJH:YJuATXYg5xP3wXBFtTBkrawW
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ratinfostealerfatalrat

behavioral1

behavioral2