NPAddConnection
NPAddConnection3
NPCancelConnection
NPCloseEnum
NPEnumResource
NPGetCaps
NPGetConnection
NPGetResourceInformation
ServiceMain
General
-
Target
1d33be1650e562d5e5afd30400b63c1e
-
Size
152KB
-
MD5
1d33be1650e562d5e5afd30400b63c1e
-
SHA1
e49bbfa15aeb73a7f100c72b3a0ca43150635c39
-
SHA256
39e03930f3930448b6497104aba41f29a88573cb04bc22d16b7c8169e145faff
-
SHA512
20096b95c9a876ce7cc8ee8815e98139d1169314945d43db4397e52d53f20fde8ac1dd7104fa7c42de7d77befb8dcbb29845ea1d64d400f286b40b57d89b5992
-
SSDEEP
3072:IORtKm6tPvjUosLefKycXI/vthPCcTBftp5HnVP3:BRz6t1sLeCDI//PCcTBlpJnN3
Score
10/10
Malware Config
Signatures
-
Gh0st RAT payload 1 IoCs
-
Gh0strat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1d33be1650e562d5e5afd30400b63c1e
Headers
Exports
Sections