Overview

overview

10

Static

static

10

ff6622c578...c0.exe

windows7-x64

10

ff6622c578...c0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ff6622c578a3c4a7db51c5e6149de470a0250a54050382905fa84b2d224c08c0

  • Size

    1.1MB

  • MD5

    a6a318d9876cd71a93300cd129b4d0bb

  • SHA1

    203c216b653046577bd612bb95c0a3bbb6ea7417

  • SHA256

    ff6622c578a3c4a7db51c5e6149de470a0250a54050382905fa84b2d224c08c0

  • SHA512

    e43383020e4226a4010c56ce91281dbbc57b9d932ece6eac00d48a6ddde2e0e570852216c707a0723efca03710022eb5bb439214c60cc43f3e729719c77a1159

  • SSDEEP

    12288:El+4Tcyct/JWT7yckBlepmbMsBXYHOWyAh5+djVyKDGpiRe7FaS+ug82qGeJ3btu:Zyc5JWackYm7dZ1Oq2nn2qPJ3btV3+f

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ff6622c578a3c4a7db51c5e6149de470a0250a54050382905fa84b2d224c08c0
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections