General
-
Target
65814bb9a7587d67592175aef1bab54877864389126238cfe8569e68d1bd9ac7
-
Size
1.5MB
-
Sample
220921-gh8ldafdc3
-
MD5
b2ff166474c866182a8021c80a738003
-
SHA1
3fa58f813fa60e1c33957ad0ac222f8c4944388b
-
SHA256
65814bb9a7587d67592175aef1bab54877864389126238cfe8569e68d1bd9ac7
-
SHA512
0e72d3a2305acd78c628a7152198273a18c9ac1c91d7e4b16f3f650258668dba87425f8fc711c70a0ac9c95e2ec47594aec7680dbc49f35a338c977662dee4c5
-
SSDEEP
24576:DJaKB/+bh75hSaByQ4D1Tt2q+S5YeZOjgIJn8/9Jd6VufkrIlzuChEot:cKBWJ58ll4sYeojwlkMzEo
Static task
static1
Behavioral task
behavioral1
Sample
65814bb9a7587d67592175aef1bab54877864389126238cfe8569e68d1bd9ac7.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
65814bb9a7587d67592175aef1bab54877864389126238cfe8569e68d1bd9ac7
-
Size
1.5MB
-
MD5
b2ff166474c866182a8021c80a738003
-
SHA1
3fa58f813fa60e1c33957ad0ac222f8c4944388b
-
SHA256
65814bb9a7587d67592175aef1bab54877864389126238cfe8569e68d1bd9ac7
-
SHA512
0e72d3a2305acd78c628a7152198273a18c9ac1c91d7e4b16f3f650258668dba87425f8fc711c70a0ac9c95e2ec47594aec7680dbc49f35a338c977662dee4c5
-
SSDEEP
24576:DJaKB/+bh75hSaByQ4D1Tt2q+S5YeZOjgIJn8/9Jd6VufkrIlzuChEot:cKBWJ58ll4sYeojwlkMzEo
-
Gh0st RAT payload
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-