General

  • Target

    ОКУРАТНО.exe

  • Size

    2.0MB

  • MD5

    843aaea3f9fcd5d05ff2561ee611880c

  • SHA1

    e8cd96e2933414c3d70d9db4a7014835cfa1bd10

  • SHA256

    94bd0998c7505445e3f74a8d902e4e768adc6304e0135075d0d856eae7c37ab1

  • SHA512

    cbed538d4521b58310700c6b439be87233c2f7035ac9e6edbdb177fad665fa379b8a8d0532ad2a68c4b554108d205a1209c02074b47a9ab16683b68be7f44f5d

  • SSDEEP

    24576:52G/nvxW3WHj0PhetvJ2pv6zvifbzgs4dGnO1F4R8rDX6ZrnHkBseAa+KMYoI:5bA3ZUo6buPaARUDInHkBHEY

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ОКУРАТНО.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections