General

  • Target

    18f5a3194d73e08d7d66b7a3b42568b3.exe

  • Size

    3.1MB

  • MD5

    18f5a3194d73e08d7d66b7a3b42568b3

  • SHA1

    86d424c8a86ec2f20407f9f2db9133a0a2b314f7

  • SHA256

    a8733ea13062f65d6aaeb65f8836f9c57bc3c3af7c0d04b94bd072ed2f56b1d1

  • SHA512

    3f14d5b896cdba1ea41516a3c1f9b2745bd403a57bb66bf6c2016ee5dde2f2bab8560822975848f4920502a4ae94975891846d8249ab401054655482964bcb11

  • SSDEEP

    49152:UbA30w1VlUYYDF62IumHbysKqLb5yHfCbShsA3z42d7U8rUc1uHToN/:UbgJWF6ymHbRzLb5ya2hsUz4c7W9K/

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 18f5a3194d73e08d7d66b7a3b42568b3.exe
    .exe windows:5 windows x86 arch:x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections