General

  • Target

    SolaraBootstrapper.exe

  • Size

    1.5MB

  • MD5

    fc883c9c23018f529b6df57a37752ee2

  • SHA1

    5f144d9aa5c24c309baf6b2a6b9975795bfc5795

  • SHA256

    84f0cb45e1f9d6f73ff0033ecc509cf19648a546966e381f227d89bd2ab5882a

  • SHA512

    5c29d4ef5194455d662d04be687c5fd7923071991ec792e623bf58e299cd4a64a60d3193699eb16cd3f4395a87f579f19f3925d948cd8bcaf37a28439d1e5ca4

  • SSDEEP

    24576:U2G/nvxW3Ww0tAcd/ADwvjwqeGOu98QhwrY//TgvCsOtZl8PeZUY:UbA30AG/ADp5G38U7xsOtZl8GH

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • SolaraBootstrapper.exe
    .exe windows:5 windows x86 arch:x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections