General
-
Target
9665de160f7695ba54117e9e3619564c.bin
-
Size
4.6MB
-
Sample
230402-b75ywsea56
-
MD5
1d00b0c1e50d61f62d5a424053e733fb
-
SHA1
822eb6307f4e5c9e6ac5fdb3cf60891e1f8f9185
-
SHA256
f867fe6ec125530f4b53cbd644f144889941f63dbc60ed1acc975f0648281a21
-
SHA512
ba11a89f35d311eecd3a2a4a0bb361749274f60c45c3ab4ca375581498e5f18a529a14784e1ff61ed383e135902c39d8e292edc8b5dfd0d45acc0f214a836276
-
SSDEEP
98304:R70zlFR+OcPciiOpgsS8HlQ/832SKnt5kEAJdiUKgIgRJg:RgzlF03a8FFw8EAeBgIz
Static task
static1
Behavioral task
behavioral1
Sample
cc68b5edae8acaaf394ae0b92b6199f83630b9d66ba60152f0db0aa849cb0ece.exe
Resource
win7-20230220-en
Malware Config
Extracted
gh0strat
190.92.242.47
Targets
-
-
Target
cc68b5edae8acaaf394ae0b92b6199f83630b9d66ba60152f0db0aa849cb0ece.exe
-
Size
4.6MB
-
MD5
9665de160f7695ba54117e9e3619564c
-
SHA1
7b49f7051f16188b14bf073c8e770ebbd005bdea
-
SHA256
cc68b5edae8acaaf394ae0b92b6199f83630b9d66ba60152f0db0aa849cb0ece
-
SHA512
5e035593ca524999b4b8dd275d754ef52f38de24c251699ed5179f2fcf5c12e7a92e1aea67bc52d22954c324afec786c894643b5a1dd7f0f2bc331c3fe32968b
-
SSDEEP
98304:3i/XDlaVlI4AhZ67RlXoAfZROOxbK58+FrzpxsUGqbgtXOgTM1/0oKU:3KD0m4A67DXfqOZ+8IIUGqbI+gw/h
-
Gh0st RAT payload
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-