General

  • Target

    d672e1ef874292f3f53e893f5090dc72ec01b75a1bed5ed4cf230fef3df62719

  • Size

    51KB

  • MD5

    1b35d160ac718243e62a42c5da8ab129

  • SHA1

    0aa85e0556e3481e216c237161ad686345a39bb9

  • SHA256

    d672e1ef874292f3f53e893f5090dc72ec01b75a1bed5ed4cf230fef3df62719

  • SHA512

    32c7b05664161534a1d6dbff86fc7d4bb853bc6a2c055e2d3a7b1bfc6c9509b5d96f23cf7a21bbe111a44361752bfdc5124914753319675a80e2ad4b5d5cd97c

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoL7JYH5:1dWubF3n9S91BF3fbofJYH5

Score
10/10

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d672e1ef874292f3f53e893f5090dc72ec01b75a1bed5ed4cf230fef3df62719
    .dll windows:4 windows x86

    4847c8aea5b26a115e9f4b1fffee02d5


    Headers

    Imports

    Exports

    Sections