Overview

overview

10

Static

static

10

0312342b49...43.exe

windows7-x64

0312342b49...43.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    0312342b493e2e251849236a1f8b8795d17b3b740c1e8ac73ba06f4977980443

  • Size

    112KB

  • MD5

    a6a2ddaf5410beecd21f339c07b79b58

  • SHA1

    a070e4fbf1884432c4b03eaac7a21c0e599c3ea9

  • SHA256

    0312342b493e2e251849236a1f8b8795d17b3b740c1e8ac73ba06f4977980443

  • SHA512

    d04760b0a589fe144eca047140c5834ae2c66a1721038e336d1f9901d85d6ccec1fa988f3c1e192ef841c4ac39823b20fef6326bd2ffcf967a2f562b181c13fa

  • SSDEEP

    3072:qF6F15h/zIn5S1aj+cU9C8TwgGw9aINej:RFjhLI5SG+Fn9aIA

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0312342b493e2e251849236a1f8b8795d17b3b740c1e8ac73ba06f4977980443
    .exe windows:6 windows


    Headers