Overview

overview

10

Static

static

10

HEUR-Troja...b4.exe

windows7-x64

10

HEUR-Troja...b4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HEUR-Trojan-Spy.MSIL.Stealer.gen-bd13041dfdb4.exe

  • Size

    608KB

  • MD5

    e8934df9ec508ad4eab478d511060d90

  • SHA1

    31582857d61047166558c92c166a6a903a09bf83

  • SHA256

    bd13041dfdb44e77eb2bc5d19ef39c05a7820010d36d2fede24d1ad330ae6daa

  • SHA512

    aecedefc6b269bfddfd9d61d91802686cfab2bea951563d2b74fb6841670f4d9e215ccab7f8953842be5a25f39dd3a034eb5cda52d54812e40f713a3465261f8

  • SSDEEP

    12288:QqnOi180YXNIIGSWAXb0ztt841j3RS/8A9rcF:Q+Oi1qNJGSnXb0zDu

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • HEUR-Trojan-Spy.MSIL.Stealer.gen-bd13041dfdb4.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections