General
-
Target
44f50973ac66fd83be9411d6ab53446f.bin
-
Size
1.2MB
-
Sample
230404-bqdhbacb52
-
MD5
5a31e7cf301fb0f2daf1c9d69db518fb
-
SHA1
a5673171f3992f00681ac7ef85cee05863bf5cb3
-
SHA256
73e185f5ce8e162e9d7ab7310e6624e68f275bba1dcf420e0b416103bc8d46df
-
SHA512
018c3e10783421f8900cb14a6d34a7c3a18c410c1c0aaaa2822eb3e2ef48bc3e546c2586b7327e79b8281ea4270deff97583318778298a9b02b151ae44a6c244
-
SSDEEP
24576:wiMjndvYLLtkCSpXGNVBS4sKBsfCTkHwb5yRBRjnNQgDa:pMZ0SXOGzaAQIlNQ7
Static task
static1
Behavioral task
behavioral1
Sample
6a97f44c2a3d62603e7870723ee797abd5d2af53e12662f0d9e0ca3c1d82e297.exe
Resource
win7-20230220-en
Malware Config
Extracted
gh0strat
192.253.237.20
Targets
-
-
Target
6a97f44c2a3d62603e7870723ee797abd5d2af53e12662f0d9e0ca3c1d82e297.exe
-
Size
1.2MB
-
MD5
44f50973ac66fd83be9411d6ab53446f
-
SHA1
6660ac4bf320699b43776f0d3f96c2b1cab104d3
-
SHA256
6a97f44c2a3d62603e7870723ee797abd5d2af53e12662f0d9e0ca3c1d82e297
-
SHA512
80a51ae37153d1385119ffbfe14a99032898e45369a1353d4483c8d4256cce419baca447cb025dcd7fa31a9abb0a98f281744040bdb7731b48a828441e2ef74d
-
SSDEEP
24576:uyDoTqctaY5effnW8RDsXOvvYh1BKy7ILN7qxx+HP288pu3WPs2/:uwoTpE/WwDIngzRqI8p0R2/
-
Gh0st RAT payload
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-