Overview

overview

10

Static

static

10

Serverwinp...ed.exe

windows7-x64

10

Serverwinp...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Serverwinperf_Slayed.exe

  • Size

    638KB

  • MD5

    ab78fe6b027f28df10769dd45cd5532c

  • SHA1

    58871734acfa2db21be0848087acefb0dd9012e4

  • SHA256

    ae52355b0b94f03cedb5362f4c30c524cb35e34b4b82a94aa65bd0cbea9e0327

  • SHA512

    52c05444bd890bd6f1c0648ac1ed7b0ba117f94f15fce14b417b228f157d7207f9b686454778fc15c2baacb6e4ac018fa9015956730b4826bb7484d37fea2569

  • SSDEEP

    6144:GelB3kalG8IhXo+L05X9PxZ/x9i/bRf6yE49MjUarQTwn7P2Enw16u9GQOR/8Lcd:GQjE8CKX9PL5gw146iM7P2T1MRB85+

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Serverwinperf_Slayed.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections