General
-
Target
76e239755989b7f8cb96c52a19305956e6e1274b7db38a2c00a4135362ed647b
-
Size
3.0MB
-
Sample
240623-2trgfszdnk
-
MD5
e7edcf9406042523e50efd0d4761656b
-
SHA1
a9d6417dbed4d6b34097369dbacefe9f378beb58
-
SHA256
76e239755989b7f8cb96c52a19305956e6e1274b7db38a2c00a4135362ed647b
-
SHA512
6765d6b18bf096fde368cd030bd418be565b763f54324e7b94564b201723366783808bf33bba5e8cb3523d6513fca92349514b8d6296977ceb00a2f5926b8e0e
-
SSDEEP
49152:YCwsbCANnKXferL7Vwe/Gg0P+WhrxrsDDPb6KUlx:zws2ANnKXOaeOgmhrxraXlg
Static task
static1
Behavioral task
behavioral1
Sample
76e239755989b7f8cb96c52a19305956e6e1274b7db38a2c00a4135362ed647b.exe
Resource
win7-20240611-en
Malware Config
Targets
-
-
Target
76e239755989b7f8cb96c52a19305956e6e1274b7db38a2c00a4135362ed647b
-
Size
3.0MB
-
MD5
e7edcf9406042523e50efd0d4761656b
-
SHA1
a9d6417dbed4d6b34097369dbacefe9f378beb58
-
SHA256
76e239755989b7f8cb96c52a19305956e6e1274b7db38a2c00a4135362ed647b
-
SHA512
6765d6b18bf096fde368cd030bd418be565b763f54324e7b94564b201723366783808bf33bba5e8cb3523d6513fca92349514b8d6296977ceb00a2f5926b8e0e
-
SSDEEP
49152:YCwsbCANnKXferL7Vwe/Gg0P+WhrxrsDDPb6KUlx:zws2ANnKXOaeOgmhrxraXlg
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Server Software Component: Terminal Services DLL
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-