General
-
Target
062edc3969073a270786492c9643437369e7892fcffc5ce9d32c39ee12a31383
-
Size
2.4MB
-
Sample
240625-wf4lzawhnr
-
MD5
50f28b55163b00e501959aa4cfd576d2
-
SHA1
83cbc62f316af6e71d79d3b7644f7c54ded14ad7
-
SHA256
062edc3969073a270786492c9643437369e7892fcffc5ce9d32c39ee12a31383
-
SHA512
70aab0ff3396761348e8bbe343613149c7c1316366ad55dadf6f7a9faf18ce1efece2308eca8b8998f7989b501703dabe7ffa2ae55bad66c58cdebd4e43df95d
-
SSDEEP
24576:dCwsbKgbQ5NANIvGTYwMHXA+wT1kfTw4SIuvB74fgt7ibhRM5QhKehFdMtRj7nHR:dCwsbCANnKXferL7Vwe/Gg0P+Wht4/
Static task
static1
Behavioral task
behavioral1
Sample
062edc3969073a270786492c9643437369e7892fcffc5ce9d32c39ee12a31383.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
062edc3969073a270786492c9643437369e7892fcffc5ce9d32c39ee12a31383
-
Size
2.4MB
-
MD5
50f28b55163b00e501959aa4cfd576d2
-
SHA1
83cbc62f316af6e71d79d3b7644f7c54ded14ad7
-
SHA256
062edc3969073a270786492c9643437369e7892fcffc5ce9d32c39ee12a31383
-
SHA512
70aab0ff3396761348e8bbe343613149c7c1316366ad55dadf6f7a9faf18ce1efece2308eca8b8998f7989b501703dabe7ffa2ae55bad66c58cdebd4e43df95d
-
SSDEEP
24576:dCwsbKgbQ5NANIvGTYwMHXA+wT1kfTw4SIuvB74fgt7ibhRM5QhKehFdMtRj7nHR:dCwsbCANnKXferL7Vwe/Gg0P+Wht4/
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Server Software Component: Terminal Services DLL
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-