General
-
Target
069303284797fc51fbfc25356e528442a323f009ee858127ce4d2c2f1236b441
-
Size
650KB
-
Sample
230829-yc6chaad5z
-
MD5
11d53aeb002e7e97ec2598bebd30621c
-
SHA1
eee1a497524f9504a6f79f1e0bcd561bf16651a9
-
SHA256
069303284797fc51fbfc25356e528442a323f009ee858127ce4d2c2f1236b441
-
SHA512
f49d1cd55489b1d296949116a704e8ad8d73345669db6ae9a3a3c7a5f49e0a4248d903c4e9a519a3ee7c6d38ac85bf87b0c59beb08ced05975acb0be0cc3f6bc
-
SSDEEP
12288:mutTZV/qb9ylN28aE2GThX8xbNpaF/4esnMzIiTe:BNZEbCfCGTqx+F/IViTe
Static task
static1
Behavioral task
behavioral1
Sample
069303284797fc51fbfc25356e528442a323f009ee858127ce4d2c2f1236b441.exe
Resource
win7-20230712-en
Malware Config
Targets
-
-
Target
069303284797fc51fbfc25356e528442a323f009ee858127ce4d2c2f1236b441
-
Size
650KB
-
MD5
11d53aeb002e7e97ec2598bebd30621c
-
SHA1
eee1a497524f9504a6f79f1e0bcd561bf16651a9
-
SHA256
069303284797fc51fbfc25356e528442a323f009ee858127ce4d2c2f1236b441
-
SHA512
f49d1cd55489b1d296949116a704e8ad8d73345669db6ae9a3a3c7a5f49e0a4248d903c4e9a519a3ee7c6d38ac85bf87b0c59beb08ced05975acb0be0cc3f6bc
-
SSDEEP
12288:mutTZV/qb9ylN28aE2GThX8xbNpaF/4esnMzIiTe:BNZEbCfCGTqx+F/IViTe
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-