General
-
Target
3cdec22c48d661c8e7143f5b371ba05029766b184ab0c9ba19b28ee20598a791
-
Size
1.4MB
-
Sample
230817-r29mwshh54
-
MD5
79e9999e83c40de7f976d844caf26b41
-
SHA1
0ec2e0948db6e410a74230e1278402f1497490c6
-
SHA256
3cdec22c48d661c8e7143f5b371ba05029766b184ab0c9ba19b28ee20598a791
-
SHA512
c67467bd41fca1aa1ce0ccdcc3824ccebc73778514f4b353a9143e2d7a20dfea751c1b9e99f0a2bff23d1134983bdeba34a9d206203a610e93fd20f7e56b7355
-
SSDEEP
24576:GgZXoZUTVdt7Kzkec+SX18gEEg9gfAtXC2wc4q2B9O5+KUXaqGEKGe9RawiJqTW9:dv8SX18gE99gfAtAxl1rPGz9YwPBa
Static task
static1
Behavioral task
behavioral1
Sample
3cdec22c48d661c8e7143f5b371ba05029766b184ab0c9ba19b28ee20598a791.exe
Resource
win7-20230712-en
Malware Config
Targets
-
-
Target
3cdec22c48d661c8e7143f5b371ba05029766b184ab0c9ba19b28ee20598a791
-
Size
1.4MB
-
MD5
79e9999e83c40de7f976d844caf26b41
-
SHA1
0ec2e0948db6e410a74230e1278402f1497490c6
-
SHA256
3cdec22c48d661c8e7143f5b371ba05029766b184ab0c9ba19b28ee20598a791
-
SHA512
c67467bd41fca1aa1ce0ccdcc3824ccebc73778514f4b353a9143e2d7a20dfea751c1b9e99f0a2bff23d1134983bdeba34a9d206203a610e93fd20f7e56b7355
-
SSDEEP
24576:GgZXoZUTVdt7Kzkec+SX18gEEg9gfAtXC2wc4q2B9O5+KUXaqGEKGe9RawiJqTW9:dv8SX18gE99gfAtAxl1rPGz9YwPBa
-
Gh0st RAT payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-