General
-
Target
097b0639eac5dce89da4f863e328cb7cdb59dddb97874056d5745baa6aa549fc.zip
-
Size
344KB
-
Sample
230321-rys6qsbb75
-
MD5
1d3360a26d407c051f5355dd1f18c56c
-
SHA1
e08e208549786f1ac0b37226b646553a08fac1fd
-
SHA256
1bc3ccfedd7ea50fe761a3aa4d1c5319082125de773054f08049d5a50d6962fa
-
SHA512
72ff0e77d91dc294fed1ea627908a371da73d06846fc3117d4d5c2903b2348fdebd370af539cf042fb4af461788beaa2dcf9257b9aca7ef28b764b042ffaeef4
-
SSDEEP
6144:RsQtkewC3Jh6WZDVVX93007mH7n0S6Hg2Bf8jsRbca47glZy5BCUMka:R/tvwYJXZxmHb6ASf4sbCDMka
Static task
static1
Behavioral task
behavioral1
Sample
097b0639eac5dce89da4f863e328cb7cdb59dddb97874056d5745baa6aa549fc.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
097b0639eac5dce89da4f863e328cb7cdb59dddb97874056d5745baa6aa549fc.exe
-
Size
508KB
-
MD5
e2b41d74c9b417aacaf1cf0e5b0df5db
-
SHA1
31c5039f7a2534f8a8b0915b62f3a6f744c1f0b0
-
SHA256
097b0639eac5dce89da4f863e328cb7cdb59dddb97874056d5745baa6aa549fc
-
SHA512
0c24501b697a2b073a66a2879cc80c46a953b7d84511126d481724afe07ff063f91cbecd73ff5502c66b09f72e10a926bd72b627d8b8a9d7465a7c887fbb671a
-
SSDEEP
12288:hh9rd3EzdxmW/MW9W2tBKDeUlQBPoriT:z+xBLIHtQGiT
-
Gh0st RAT payload
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-