General

  • Target

    19a544b13d34db3f0cb00fc0aac83451

  • Size

    283KB

  • MD5

    19a544b13d34db3f0cb00fc0aac83451

  • SHA1

    dc6b09bafcee899fd617bb612f0f7eb8c115dbc3

  • SHA256

    723aaa0dcbf0253c13baeded7b2217993261da980505c657df5a4c5c481cb7b2

  • SHA512

    f2050708a1b5bef3fe306eb9eb558644ac3a8053eac009b3e2b2f83fd748ad0d3c5a36025e7426c67c9b019e5357c4993f4604b0215e89400d908bc5360dba77

  • SSDEEP

    6144:wGzRxSVtp0l6whGfsKR+zkBpTaa5tJHYY:Dt0VPFfsKAkrbPlYY

Score
10/10

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 19a544b13d34db3f0cb00fc0aac83451
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections