General

  • Target

    250307-n6gk5a1d9x_pw_infected.zip

  • Size

    84KB

  • MD5

    b18d042e9a334f82a7100960631a62cf

  • SHA1

    ce20df9798018a6b2a8b09358ee047bb8418188b

  • SHA256

    fb4d9a8257be9211f70d8dff176e67daca2e95ba7f0822e27d8503b9ab448e16

  • SHA512

    8ace13b8871d34a87cc2e233ef0ef4ff5714e56d4beeb67799c37c56997a0dea26d60148223acbe2bedfb1dd55edd19c306efb7c7db37f2fd9d468704918954d

  • SSDEEP

    1536:DIek/4FfkTKXK1EsHiPnJ/2P+MdWiG2iXSSTd0Nx4dKXLoSEKY6NiWVSwFbM+kIz:EvOfkTKausHiPnRMdW0YTd0Nb7YIXVS2

Malware Config

Signatures

  • Fatal Rat payload 1 IoCs
  • Fatalrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 250307-n6gk5a1d9x_pw_infected.zip
    .zip

    Password: infected

  • 4609f46c7a9f8fe01fe05eca4cde987e28f68fd9651de113ec87c4e6b03b52c9
    .dll windows:4 windows x86 arch:x86

    3e8c1ec958a972a1a0bfec550b558755


    Headers

    Imports

    Exports

    Sections