General
-
Target
90fc4172e4ca441aa7b7d2f6ed1875122d9d501b5108ccb8444237525e3733ee
-
Size
2.7MB
-
Sample
230829-xdfmsseg53
-
MD5
6ba717ee2818bc709ca2bb81566f0d7d
-
SHA1
016c53a7a5650727436540f19136d31defb76db7
-
SHA256
90fc4172e4ca441aa7b7d2f6ed1875122d9d501b5108ccb8444237525e3733ee
-
SHA512
c17aba49048e0683e57c8b9c4305f38599e1f8a2ed8244fcdc6abd25b4cef27d1af155d13597947fbd2f82a6db2460054b16cf8735312b2efce6575275e7016c
-
SSDEEP
49152:pCwsbCANnKXferL7Vwe/Gg0P+WhmCgifo:Ews2ANnKXOaeOgmhmCgiw
Static task
static1
Behavioral task
behavioral1
Sample
90fc4172e4ca441aa7b7d2f6ed1875122d9d501b5108ccb8444237525e3733ee.exe
Resource
win7-20230712-en
Malware Config
Targets
-
-
Target
90fc4172e4ca441aa7b7d2f6ed1875122d9d501b5108ccb8444237525e3733ee
-
Size
2.7MB
-
MD5
6ba717ee2818bc709ca2bb81566f0d7d
-
SHA1
016c53a7a5650727436540f19136d31defb76db7
-
SHA256
90fc4172e4ca441aa7b7d2f6ed1875122d9d501b5108ccb8444237525e3733ee
-
SHA512
c17aba49048e0683e57c8b9c4305f38599e1f8a2ed8244fcdc6abd25b4cef27d1af155d13597947fbd2f82a6db2460054b16cf8735312b2efce6575275e7016c
-
SSDEEP
49152:pCwsbCANnKXferL7Vwe/Gg0P+WhmCgifo:Ews2ANnKXOaeOgmhmCgiw
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-