General

  • Target

    c74a5d3a4ef301951b64e8a3011205b3.exe

  • Size

    196KB

  • MD5

    c74a5d3a4ef301951b64e8a3011205b3

  • SHA1

    a1ff443ba33675ec16b39855b06ba77b951dd305

  • SHA256

    e0452411ef75e62d519e851bc1a7ae3db4a1e91ff6e15ed5fac9697f5a1659e0

  • SHA512

    bda7238aa67ac4ebeac13caa265a1cc73c94246499a2638042302b7418985f8fe109431df7aee679db1c28ae154804cb37791e1333ca2eabb149297b16efc1f7

  • SSDEEP

    3072:6oUGzRVHgCcnV5j9j0lvil2NnGfNGHqRy1zkeS1FpTa3q5tJHW:wGzRxSVtp0l6whGfsKR+zkBpTaa5tJHW

Score
10/10

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c74a5d3a4ef301951b64e8a3011205b3.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections