General
-
Target
b41b657eb9883b9d2de872e7200d4fd2.exe
-
Size
158KB
-
MD5
b41b657eb9883b9d2de872e7200d4fd2
-
SHA1
a9b102d7b76416bc4beaa2702e3b90206c323b66
-
SHA256
a73f67009d77906b2dfee216b4e7cb940eef13304c22e909b65cd2834e291b1a
-
SHA512
eb290a85597c934485887d7ccf21642042ceff82b052784543a55569af404b60fc9d42dcd42da027750d439a55a928705d4f9c1e40824e8f0b91d2e92110d73f
-
SSDEEP
3072:5bzwH+0OoCthfbEFtbcfjF45gjryKKqH6JY2doszEmQotEPPcfP6OO8Y:5bzwe0ODhTEPgnjuIJzo+PPcfP6B8
Score
10/10
Malware Config
Extracted
Family
arrowrat
Botnet
Client
C2
and-statements.gl.at.ply.gg:43442
Mutex
KRSSneMpK
Signatures
-
Arrowrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
b41b657eb9883b9d2de872e7200d4fd2.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections