General
-
Target
7764a9cb85dcae578fc85736e51061b21f3d2b0b5cede2e1a851467b8ddb5fbc
-
Size
2.5MB
-
Sample
240625-wg5westgnb
-
MD5
fbc8d4d7a277b990ec9e9e9990d84f46
-
SHA1
1168033a5cfc873bfc52e5e93f14588651e87ff1
-
SHA256
7764a9cb85dcae578fc85736e51061b21f3d2b0b5cede2e1a851467b8ddb5fbc
-
SHA512
bf1242f45f68376de423f1f11128ea3b9bbf4af1dd5a418723b654b601b22bc8c5da70ce59c7a421e6628659336fd3067bdf384173e691df468ba5a8d92a0b4e
-
SSDEEP
49152:rCwsbCANnKXferL7Vwe/Gg0P+WhUIan2:uws2ANnKXOaeOgmhUrn2
Static task
static1
Behavioral task
behavioral1
Sample
7764a9cb85dcae578fc85736e51061b21f3d2b0b5cede2e1a851467b8ddb5fbc.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
7764a9cb85dcae578fc85736e51061b21f3d2b0b5cede2e1a851467b8ddb5fbc
-
Size
2.5MB
-
MD5
fbc8d4d7a277b990ec9e9e9990d84f46
-
SHA1
1168033a5cfc873bfc52e5e93f14588651e87ff1
-
SHA256
7764a9cb85dcae578fc85736e51061b21f3d2b0b5cede2e1a851467b8ddb5fbc
-
SHA512
bf1242f45f68376de423f1f11128ea3b9bbf4af1dd5a418723b654b601b22bc8c5da70ce59c7a421e6628659336fd3067bdf384173e691df468ba5a8d92a0b4e
-
SSDEEP
49152:rCwsbCANnKXferL7Vwe/Gg0P+WhUIan2:uws2ANnKXOaeOgmhUrn2
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Server Software Component: Terminal Services DLL
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-