Overview

overview

10

Static

static

10

HEUR-Backd...64.exe

windows7-x64

10

HEUR-Backd...64.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    HEUR-Backdoor.MSIL.LightStone.gen-e0fa9c62364.exe

  • Size

    653KB

  • MD5

    0ecfd27f7c9abfac64f27e35c057db96

  • SHA1

    0269c713a2b572b7765af4f99775a35c49a6b339

  • SHA256

    e0fa9c62364826149547d32728d06d155bdc6a54e90554695f8039bd7b73d036

  • SHA512

    95cb04faadd00f1da84daf2264efe7e81b679f655520f8e31a638292c902f40d77be2d0f6a7b42760fe8bd0fd7206bf614036b56108570a66a29684b1b71ae14

  • SSDEEP

    12288:QqnOW4zKT/LKvAo/QkEs5sht1MzuFdoZohLdivXRHEEU7/8+AK7U:Q+OFzK3KooYcKqzufsB3o7U

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • HEUR-Backdoor.MSIL.LightStone.gen-e0fa9c62364.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections