General
-
Target
58a770766f8fcc132f2ab60aa102d5a65f89b76866697f2b483cca5c126046da
-
Size
1.4MB
-
Sample
240626-ggab7a1djq
-
MD5
5f36ff48cd679e576f20cddce7de338f
-
SHA1
0e0fff8e623f554b44be3ffdb9c638c09b99e7b3
-
SHA256
58a770766f8fcc132f2ab60aa102d5a65f89b76866697f2b483cca5c126046da
-
SHA512
53711099977865974ab49d26d5c520b7b094a4c135660c9fcda761da1d57bc5ace1123f24507eeb915df7106de983e43f44b89376d53f45e69cf374cffa74370
-
SSDEEP
24576:dxZoidOTdVZinacCET9Ecl1erdg0MCiVWhFU7cVFV1Dfun2f:dxZAdVyVT9n/Gg0P+Who2Dmn2f
Static task
static1
Behavioral task
behavioral1
Sample
58a770766f8fcc132f2ab60aa102d5a65f89b76866697f2b483cca5c126046da.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
58a770766f8fcc132f2ab60aa102d5a65f89b76866697f2b483cca5c126046da
-
Size
1.4MB
-
MD5
5f36ff48cd679e576f20cddce7de338f
-
SHA1
0e0fff8e623f554b44be3ffdb9c638c09b99e7b3
-
SHA256
58a770766f8fcc132f2ab60aa102d5a65f89b76866697f2b483cca5c126046da
-
SHA512
53711099977865974ab49d26d5c520b7b094a4c135660c9fcda761da1d57bc5ace1123f24507eeb915df7106de983e43f44b89376d53f45e69cf374cffa74370
-
SSDEEP
24576:dxZoidOTdVZinacCET9Ecl1erdg0MCiVWhFU7cVFV1Dfun2f:dxZAdVyVT9n/Gg0P+Who2Dmn2f
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Server Software Component: Terminal Services DLL
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-