gh0strat | 4711d6eaa5c0cb7723d92292f799d76cae2da58185559d66b42c5f14aa2eaec3

General

Target

4711d6eaa5c0cb7723d92292f799d76cae2da58185559d66b42c5f14aa2eaec3
Size

112KB
MD5

eff3827f9df3eb56f79edca00dc9834b
SHA1

fb57c294ab31e64166b61e67d4ae3ff4192f6c00
SHA256

4711d6eaa5c0cb7723d92292f799d76cae2da58185559d66b42c5f14aa2eaec3
SHA512

b512fe2216c1a59caa3259764dac1355ddc2b57da4184a2518d5143d0d64d3b1f3b32d965c566f07d597e7fe0e6ce14ec8169267445437a640152820892dc223
SSDEEP

3072:tF6F15h/zIn5S1aj+cU9C8Yjgvw9aINej:WFjhLI5SG+FS9aIA

Score

10^/10

gh0strat

Gh0st RAT payload 1 IoCs

resource	yara_rule
sample	family_gh0strat

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4711d6eaa5c0cb7723d92292f799d76cae2da58185559d66b42c5f14aa2eaec3

4711d6eaa5c0cb7723d92292f799d76cae2da58185559d66b42c5f14aa2eaec3
.exe windows:6 windows

Headers