Overview

overview

10

Static

static

10

HEUR-Backd...at.exe

windows7-x64

10

HEUR-Backd...at.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    HEUR-Backdoor.MSIL.DCRat.gen-c4532f2385f63ff92d7ca9f1541f5b85d85d245f74bcca8daa7053ed7573e942

  • Size

    2.0MB

  • MD5

    54058732eee395083994c6ba4e8d2086

  • SHA1

    c75c0d7936060cb49035dc79bb58864f4cfb9471

  • SHA256

    c4532f2385f63ff92d7ca9f1541f5b85d85d245f74bcca8daa7053ed7573e942

  • SHA512

    ffa855518863b8ca044d5f57c9a767e9bac610d75f96d9adcc94a47b5332052af84ba1256f36f4ce887bae0fb2f9067134df40a05fcac4c72d4dfe5379f82a5a

  • SSDEEP

    49152:tqHEuTrhUqQcvwHnX9B0gQ1TgqAsoqbBmXob3:IHrUqQcvQnX9B0gQ1TgqAsRVmXob3

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • HEUR-Backdoor.MSIL.DCRat.gen-c4532f2385f63ff92d7ca9f1541f5b85d85d245f74bcca8daa7053ed7573e942
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections