General
-
Target
294ae7dee3cf309163323e5d23cf71bab0507e996188c5a23309e8fce49942ef.exe
-
Size
268KB
-
MD5
950fb981639316a70646026530100894
-
SHA1
8b12c2b1e77e2adb2ae744cd7837aa35fd8c427d
-
SHA256
294ae7dee3cf309163323e5d23cf71bab0507e996188c5a23309e8fce49942ef
-
SHA512
8970135b78068939e6272bf221e5b414c114ce9a2dcb6a175af64f82999b4e5127857c5e39cfb2ab56c03d2a8e4eda5d4141ddfa7ff5bdc7b408c3c89f57db2f
-
SSDEEP
6144:B2Rnh5EsIm2EJ7RNYQRcyXthY09inGogjf:Beh5EsIYJdNPd9G090Nif
Score
10/10
Malware Config
Signatures
-
Detects executables embedding registry key / value combination manipulating RDP / Terminal Services 1 IoCs
-
Detects file containing reversed ASEP Autorun registry keys 1 IoCs
-
Gh0st RAT payload 1 IoCs
-
Gh0strat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
294ae7dee3cf309163323e5d23cf71bab0507e996188c5a23309e8fce49942ef.exe
Headers
Sections