Overview

overview

10

Static

static

10

5a797702c4...0N.dll

windows7-x64

7

5a797702c4...0N.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5a797702c42b44d9335d6600309f2f60N

  • Size

    9KB

  • MD5

    5a797702c42b44d9335d6600309f2f60

  • SHA1

    606b57ba957d0e7dd9b50e7ed38272a619782aeb

  • SHA256

    5984f540d1dec56f541c548bff410e879f35fd10ea030fd1580aa0ec4baa2a7d

  • SHA512

    09ce03310f7e9983150aed62258dbc75f67c8f397edd7cea54aa29fd53643331c1706de6785f1a2442f34e899e3209f0052756b553f0b8bf51651f1592cc7833

  • SSDEEP

    96:AggAu/TxFFgeqAVeNrWM2z8RfQ/2gAZekUtv4T/ozTAPhb92JT/4UUpdWLHtpJV6:JY/vue7VeJRY/2DwwT/ozMPhBCU0336

Score
10/10
upxgh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 5a797702c42b44d9335d6600309f2f60N
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections