Overview

overview

10

Static

static

10

0cd12522a8...18.exe

windows7-x64

10

0cd12522a8...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0cd12522a8e5c42cd6b6a0b836ea5997_JaffaCakes118

  • Size

    346KB

  • MD5

    0cd12522a8e5c42cd6b6a0b836ea5997

  • SHA1

    281891abf4c646c39f4d0cbab156d7820e69f623

  • SHA256

    c2bb3b2104c82becd75ec32b654cdb52ea1fef75045682a7ac8d955ad4692a9e

  • SHA512

    0e9077781313817319eb9ee7f0d668290c3683adc7ef72c3c642aa7e0abafd444c7b99694ba8c5adfe1c9287088826e37a705d8b43a0599e8963305bb63a3ebd

  • SSDEEP

    6144:EJVbakZbo4xMv6CxaAb9Jw7BS5qk8Xp99z4T14KuS2ETJ:Euk9h86CxB96eF8/9kNu/

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0cd12522a8e5c42cd6b6a0b836ea5997_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections