Overview

overview

10

Static

static

10

666271544a...fe.exe

windows7-x64

10

666271544a...fe.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    666271544af5f211b51e7dc0330cb3bba240c5ed7989f16eebd9c6bc2fdf04fe

  • Size

    328KB

  • MD5

    2154c3287d8c4e6a66733fdd730c029e

  • SHA1

    0f717b2f561ba440737406864c14e8b2090cd75d

  • SHA256

    666271544af5f211b51e7dc0330cb3bba240c5ed7989f16eebd9c6bc2fdf04fe

  • SHA512

    9cd423cae481a31b7ec6ee5602111e83fa1a757a819e2ad842f7a156a01c36ca2f27a85d81cc698620aaf6b8e7dfa3ab7896d4acfa8b70c24c7091443a201cbc

  • SSDEEP

    6144:PREK6rOK9aaBcPc7hgF2JIYLeL+SpcHRG5/bhuwCqy:P+s+aOhggJg0HI5Vi

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 666271544af5f211b51e7dc0330cb3bba240c5ed7989f16eebd9c6bc2fdf04fe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections