Overview

overview

10

Static

static

10

6956600c7c...e5.exe

windows7-x64

10

6956600c7c...e5.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1d5a5802b4eddcfc6aaa89c8cd2bdd4a.bin

  • Size

    910KB

  • MD5

    b5d48bed8df4c129302cb1f996d9c100

  • SHA1

    16ee26c53c0efc3a01a6fa3a4c37dd93aac33427

  • SHA256

    0c95869cd146b89fe72df5544f8a66c39b26ab61f65abc69ed95e5d6de17767a

  • SHA512

    3a0409d183d6778c9377a4169932c1f4d9705def78f104226fd6c20d6faa3ceb6275f3ff8ce1d6be53e4def7605ff3c38ac555774dc8effa4e8e72dc234303bd

  • SSDEEP

    12288:TkwmTpk7pmLcBVDgU1OMZ9InbDVUUMKDxaCXt93xVHXWm3KkZOZWR/vMoNnr7M:TkP2MaztZ9qbh+K1JHXx/ZJMo1fM

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1d5a5802b4eddcfc6aaa89c8cd2bdd4a.bin
    .zip

    Password: infected

  • 6956600c7c95f4d1871610a4ebfb52abb8e003baae2cfae1ecdc489f0ebd7ee5.exe
    .exe windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections