General
-
Target
e65ce5d4d20836181fbc041ca28853c89946013e1ab7fcd7e0bb58442f274e0d.exe
-
Size
1.1MB
-
Sample
240726-hgf1eawaja
-
MD5
e7649dbbe065cf99e15f3675089bad71
-
SHA1
8d3530b32908ae44544d24b4e1cf86595bc0feb2
-
SHA256
e65ce5d4d20836181fbc041ca28853c89946013e1ab7fcd7e0bb58442f274e0d
-
SHA512
0a98c00496cc9d0513c3c4596cb5ec456da5efdee68fc88c7a8098758ae9112e8884a40f37e1589418052841948d9b5a6678e8d687722f2f118c12bac779be57
-
SSDEEP
24576:uFE//Tct4bOsCvDeZIVT7yghRofReGy+KrN:ESVCviIV/yARaReGO
Behavioral task
behavioral1
Sample
e65ce5d4d20836181fbc041ca28853c89946013e1ab7fcd7e0bb58442f274e0d.exe
Resource
win7-20240704-en
Malware Config
Targets
-
-
Target
e65ce5d4d20836181fbc041ca28853c89946013e1ab7fcd7e0bb58442f274e0d.exe
-
Size
1.1MB
-
MD5
e7649dbbe065cf99e15f3675089bad71
-
SHA1
8d3530b32908ae44544d24b4e1cf86595bc0feb2
-
SHA256
e65ce5d4d20836181fbc041ca28853c89946013e1ab7fcd7e0bb58442f274e0d
-
SHA512
0a98c00496cc9d0513c3c4596cb5ec456da5efdee68fc88c7a8098758ae9112e8884a40f37e1589418052841948d9b5a6678e8d687722f2f118c12bac779be57
-
SSDEEP
24576:uFE//Tct4bOsCvDeZIVT7yghRofReGy+KrN:ESVCviIV/yARaReGO
-
Gh0st RAT payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-