General

  • Target

    02b1fef2b07a9aaadac44ac6f69ffedd

  • Size

    162KB

  • MD5

    02b1fef2b07a9aaadac44ac6f69ffedd

  • SHA1

    043de60fbfc8a92cd2eff8bebf8a34c659e66615

  • SHA256

    5c6f34ee945eeca914b126a481d637bf34400c32d54305ed68f9d668ae0041e5

  • SHA512

    9cab525ffb530a0afa7735192c313011e83674f38e36544090b1d50852979f4d4d827da9b37b29552c19cf32170a34cf38715a29070f2a18903e8f928f27cb35

  • SSDEEP

    3072:DoUGzRVHgCcnV5j9j0lvil2NnGfNGHqRy1zkeS1FpTa3q5tJH9Bw:LGzRxSVtp0l6whGfsKR+zkBpTaa5tJHg

Score
10/10

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 02b1fef2b07a9aaadac44ac6f69ffedd
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections