General
-
Target
HD_X.dat
-
Size
2.4MB
-
Sample
230307-llymsshe78
-
MD5
6ec3e1ebaa6de0081d4948045a41ceb9
-
SHA1
b02b3cdfd4aef3a95de668180dc6253624cdbda8
-
SHA256
8e1c6c59d9418d2c85c9e2a8fa82d5912b41ac11c258b7cb6a97af02dfa4c4f1
-
SHA512
cb4deecafbe578876d48ee043ad0777eae0356908976f14daf9489ac2332b5de9ccd59391647e44d57137b1a2b4eee5b96a0994df0390a8d526fab0faaf0d08a
-
SSDEEP
24576:pCwsbKgbQ5NANIvGTYwMHXA+wT1kfTw4SIuvB74fgt7ibhRM5QhKehFdMtRj7nHz:pCwsbCANnKXferL7Vwe/Gg0P+Wh9EP
Static task
static1
Behavioral task
behavioral1
Sample
HD_X.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
HD_X.dat
-
Size
2.4MB
-
MD5
6ec3e1ebaa6de0081d4948045a41ceb9
-
SHA1
b02b3cdfd4aef3a95de668180dc6253624cdbda8
-
SHA256
8e1c6c59d9418d2c85c9e2a8fa82d5912b41ac11c258b7cb6a97af02dfa4c4f1
-
SHA512
cb4deecafbe578876d48ee043ad0777eae0356908976f14daf9489ac2332b5de9ccd59391647e44d57137b1a2b4eee5b96a0994df0390a8d526fab0faaf0d08a
-
SSDEEP
24576:pCwsbKgbQ5NANIvGTYwMHXA+wT1kfTw4SIuvB74fgt7ibhRM5QhKehFdMtRj7nHz:pCwsbCANnKXferL7Vwe/Gg0P+Wh9EP
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-