General

  • Target

    250307-n6g7nawrsl_pw_infected.zip

  • Size

    84KB

  • MD5

    66ae5a96d208fc03960a5a4b3da89b1b

  • SHA1

    724d26a976efcbd1f14d87ba855e60bb7f34b64f

  • SHA256

    738d5258b39f6a15d6d4e3063bb75b96433a1fb87512c71f5e0e03ab091a4836

  • SHA512

    3bce8711e445664373de646f9d34160eac1d753610ebdd76672ab67242345bde0c7793c5ed42360c4a6fbe7f9f5d332dba64d4068da6866745792b27ecd69639

  • SSDEEP

    1536:EsS4FdlwtGgji9n3vHqOYkbaBPamnN+TqlMFOrkjsjFrUjQ2P:EEle69n3PyzBCmITqOFskjmAFP

Malware Config

Signatures

  • Fatal Rat payload 1 IoCs
  • Fatalrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 250307-n6g7nawrsl_pw_infected.zip
    .zip

    Password: infected

  • f1e083da9fa1b9a6cbd63a3da0d445a3351478bf233b1495c45d2731a04d146c
    .dll windows:4 windows x86 arch:x86

    eaf22b71fcc2e776a74413812296b09b


    Headers

    Imports

    Exports

    Sections