General
-
Target
a8b525c987b2d76a7423bfcfb330d4a427fa4364fc56f3d9f51c1e1a85e87e1c
-
Size
888KB
-
Sample
230323-b23atacg38
-
MD5
7e8a01910e1d17303bfb0c44a1c4a842
-
SHA1
b2df44bc4b608b56305d392a513ae04d4e6112f9
-
SHA256
a8b525c987b2d76a7423bfcfb330d4a427fa4364fc56f3d9f51c1e1a85e87e1c
-
SHA512
d07dbbc37df6b7ab0c313697fd928ff93385d3958a98a7caf7e3a30a9d31a840ca96f992921962292a0e69b4eaf760c5b206c4049c1dc73fa6d259ecfbc60978
-
SSDEEP
12288:2w5dSrZDAwfyUZd9xZ9EX+XBqbJTXv4w8Zg+3Mlazd+CXQqHA:2w5GDASyUZd9xZS1XvFw8CXH
Malware Config
Extracted
gh0strat
30.cmananan.com
Targets
-
-
Target
a8b525c987b2d76a7423bfcfb330d4a427fa4364fc56f3d9f51c1e1a85e87e1c
-
Size
888KB
-
MD5
7e8a01910e1d17303bfb0c44a1c4a842
-
SHA1
b2df44bc4b608b56305d392a513ae04d4e6112f9
-
SHA256
a8b525c987b2d76a7423bfcfb330d4a427fa4364fc56f3d9f51c1e1a85e87e1c
-
SHA512
d07dbbc37df6b7ab0c313697fd928ff93385d3958a98a7caf7e3a30a9d31a840ca96f992921962292a0e69b4eaf760c5b206c4049c1dc73fa6d259ecfbc60978
-
SSDEEP
12288:2w5dSrZDAwfyUZd9xZ9EX+XBqbJTXv4w8Zg+3Mlazd+CXQqHA:2w5GDASyUZd9xZS1XvFw8CXH
-
Gh0st RAT payload
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-