Overview

overview

10

Static

static

10

a688f794b8...97.exe

windows7-x64

a688f794b8...97.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    a688f794b8783ce99e289a0bdaa305457bfa710b1e1d28ed1f1123cd2872ae97

  • Size

    112KB

  • MD5

    af16172c31d5cc3123f808f3f6e34b74

  • SHA1

    f0d848d058574834e51ad6f68c367a6a43c61135

  • SHA256

    a688f794b8783ce99e289a0bdaa305457bfa710b1e1d28ed1f1123cd2872ae97

  • SHA512

    ff242523d21a84caa97cf77101b821e94a31c34890c8922294e8e32b6ab8fa505f3f476bfa87117147b05b445bc519e6eb14b3d3e22bc3c4f952b226fb48d31d

  • SSDEEP

    3072:fF6F15h/zIn5S1aj+cU9C80xg9w9aINej:gFjhLI5SG+Fy9aIA

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a688f794b8783ce99e289a0bdaa305457bfa710b1e1d28ed1f1123cd2872ae97
    .exe windows:6 windows


    Headers