General
-
Target
e6c6a9bc8e8d8b7e157b3fe21f0aaf0f635a174a94bcd1072e22c1d07ba545ab
-
Size
224KB
-
MD5
60196511d0414acc9ea13692a709df82
-
SHA1
50964d148703ea93f27cfca3cf38749ea57cb688
-
SHA256
e6c6a9bc8e8d8b7e157b3fe21f0aaf0f635a174a94bcd1072e22c1d07ba545ab
-
SHA512
b77ceeb2e2ececd66b1ad3d21cf187e27058b5b41e4fbf9eedc1b961b001bd9ddee981b5946d4fe09ac26348ecda4734a401ae515a4ee50009d63a8222459235
-
SSDEEP
3072:hTeJY1km5WBqwP3fsnQ/Xz7iasXKyC/hX6xxv3zUt7LEwn46QXMmAIYm94WOZp:hiJtiWB0QL7trJ5Mp3zO5n4HMKP
Score
10/10
Malware Config
Signatures
-
Detects executables embedding registry key / value combination manipulating RDP / Terminal Services 1 IoCs
-
Detects file containing reversed ASEP Autorun registry keys 1 IoCs
-
Gh0st RAT payload 1 IoCs
-
Gh0strat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
e6c6a9bc8e8d8b7e157b3fe21f0aaf0f635a174a94bcd1072e22c1d07ba545ab
Headers
Sections