gh0strat | 9b4d830c405b044eb02c148b9aa83caf84533971579047fa80eb0ae0f4d00c1e

General

Target

9b4d830c405b044eb02c148b9aa83caf84533971579047fa80eb0ae0f4d00c1e
Size

112KB
MD5

0e921a1c1194e81bc55df1c4975a7f60
SHA1

c36776092004a4a8d2476a686b2ed70a6eec7347
SHA256

9b4d830c405b044eb02c148b9aa83caf84533971579047fa80eb0ae0f4d00c1e
SHA512

a411a62625b3abe4f09ef7db167144ddb06c4c3b0470917772e4f77c4d3c81f1b99069d150e05182cfb2c1b2a8447ff4297bb0b43dfb791e00406383fac8d7aa
SSDEEP

3072:1F6F15h/zIn5S1aj+cU9C8ubgHw9aINej:OFjhLI5SG+FU9aIA

Score

10^/10

gh0strat

Gh0st RAT payload 1 IoCs

resource	yara_rule
sample	family_gh0strat

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b4d830c405b044eb02c148b9aa83caf84533971579047fa80eb0ae0f4d00c1e

9b4d830c405b044eb02c148b9aa83caf84533971579047fa80eb0ae0f4d00c1e
.exe windows:6 windows

Headers