General

  • Target

    d7a0ca18ae95c63d25af6782b7bd6b8d.bin

  • Size

    632KB

  • MD5

    5423d14f9b0fcfad36b11ca880f8b428

  • SHA1

    25297f78713400de81e394905a444da45c230e7b

  • SHA256

    0530878595bd050de51d1bc83c86e77e1ac2bb5ce48188bc659be02616aed972

  • SHA512

    da9a13352317e8192fb96ef3e426cbd92cc8158f14417ecf0befc64582b27690f59054d318b325c0080e810edd7b565b3bceba79beb74353ded4f81e8665aa23

  • SSDEEP

    12288:dmfQKtw1CJU9ufQJnMh4lmTXmJlWz5k8dG7fvJNfepS/iRWo:dmfQh1CYufQJnmImTXiE5kH7F/6

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d7a0ca18ae95c63d25af6782b7bd6b8d.bin
    .zip

    Password: infected

  • 131604f5f6612d1f2973e76bedcdd7f1d78deda8c4465eb28f4dfda1051a3fa3.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections