Overview

overview

10

Static

static

10

1dd3edb673...74.exe

windows7-x64

10

1dd3edb673...74.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    638809035dd3fafc1377ffd71f4a5296.bin

  • Size

    2.6MB

  • MD5

    21c98238bc48261f6cdc46f1679f5a4c

  • SHA1

    e9954acf9439da485448dac99e7714ac99bb36eb

  • SHA256

    3c8446105b8c784de66d9f19aea1ff4a12afda154f2f35056fa6acfecfa6453e

  • SHA512

    f1e7d05d349f576848b6b9a6cbfdacfc683a4b5b8025124060af357f822f89d86abc0654dc44000cd36e88a0863dda626e2fd5daf03aa30f12b47afec90b1fb4

  • SSDEEP

    49152:FicBOGJUuHySffvU/KrTDW0W0o6JMfOfUkpMPPs5lRjwtPHVOUGYKoSQZc3u6+R:r9THyCvUCq0WeJMOfUke3+rjwtdOzZc9

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 638809035dd3fafc1377ffd71f4a5296.bin
    .zip

    Password: infected

  • 1dd3edb673a05c19521b785935f8e803ec5f3104883db80f1a671182e23c4274.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections