General
-
Target
fc991045ca4f0b0bb242670f6f31b99af2beb818aaa03da33b5e880fdb1b5fa4
-
Size
2.4MB
-
Sample
240619-f6vhzsyhqq
-
MD5
095d0f2d5acffcbf47251de8dcbe6de7
-
SHA1
24a287a8fda23a29339a8f43d439a82b91407636
-
SHA256
fc991045ca4f0b0bb242670f6f31b99af2beb818aaa03da33b5e880fdb1b5fa4
-
SHA512
03d374629ba8826b275f0efaab6f0b530ddc23c94e73fc5ef3bc951a6bff61d0969b1acf7d44d06909f68f9569b166bcf56207e9b77dce20ecd6f0f970d5bd54
-
SSDEEP
49152:NCwsbCANnKXferL7Vwe/Gg0P+WhAjzlEa:wws2ANnKXOaeOgmhAnlEa
Static task
static1
Behavioral task
behavioral1
Sample
fc991045ca4f0b0bb242670f6f31b99af2beb818aaa03da33b5e880fdb1b5fa4.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
fc991045ca4f0b0bb242670f6f31b99af2beb818aaa03da33b5e880fdb1b5fa4
-
Size
2.4MB
-
MD5
095d0f2d5acffcbf47251de8dcbe6de7
-
SHA1
24a287a8fda23a29339a8f43d439a82b91407636
-
SHA256
fc991045ca4f0b0bb242670f6f31b99af2beb818aaa03da33b5e880fdb1b5fa4
-
SHA512
03d374629ba8826b275f0efaab6f0b530ddc23c94e73fc5ef3bc951a6bff61d0969b1acf7d44d06909f68f9569b166bcf56207e9b77dce20ecd6f0f970d5bd54
-
SSDEEP
49152:NCwsbCANnKXferL7Vwe/Gg0P+WhAjzlEa:wws2ANnKXOaeOgmhAnlEa
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Server Software Component: Terminal Services DLL
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-