General
-
Target
4fd32aa955aa9bd3a33ca8771445822be3b55d53e04d5e6fa40b0cbaa354bf68
-
Size
491KB
-
Sample
230828-t9gcesda45
-
MD5
7da8e9785dde7832556c818c816bb839
-
SHA1
d124bfe64ff733660df4749be24a6d110fb5e306
-
SHA256
4fd32aa955aa9bd3a33ca8771445822be3b55d53e04d5e6fa40b0cbaa354bf68
-
SHA512
5baf9ec62e12625a4e986942ea33e604ad7251468ae666ec3857e08acb4ed3f126c885a46948f5360eb9db62350bd65b4449cba49e761c21afda705e0055fc43
-
SSDEEP
6144:E7wYNaSqy7WvCH0WYMzhExyNsbYiE17RzkmTldDwDdD+6kAT037IPe0ymqLaR56X:igV6WvCzhsEpJzWd7kFx0ymov
Static task
static1
Behavioral task
behavioral1
Sample
4fd32aa955aa9bd3a33ca8771445822be3b55d53e04d5e6fa40b0cbaa354bf68.exe
Resource
win7-20230712-en
Malware Config
Targets
-
-
Target
4fd32aa955aa9bd3a33ca8771445822be3b55d53e04d5e6fa40b0cbaa354bf68
-
Size
491KB
-
MD5
7da8e9785dde7832556c818c816bb839
-
SHA1
d124bfe64ff733660df4749be24a6d110fb5e306
-
SHA256
4fd32aa955aa9bd3a33ca8771445822be3b55d53e04d5e6fa40b0cbaa354bf68
-
SHA512
5baf9ec62e12625a4e986942ea33e604ad7251468ae666ec3857e08acb4ed3f126c885a46948f5360eb9db62350bd65b4449cba49e761c21afda705e0055fc43
-
SSDEEP
6144:E7wYNaSqy7WvCH0WYMzhExyNsbYiE17RzkmTldDwDdD+6kAT037IPe0ymqLaR56X:igV6WvCzhsEpJzWd7kFx0ymov
-
Gh0st RAT payload
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-