Overview

overview

10

Static

static

10

4bc870c60b...aa.exe

windows7-x64

4bc870c60b...aa.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4bc870c60b0782c25db4a7384637a892a12a0f2557c12475092f61824ad9a2aa

  • Size

    109KB

  • MD5

    3fe0bdf05868ab2d328427dad60c16fc

  • SHA1

    ff84974b523bcac75943a72ed915de991c0d4c73

  • SHA256

    4bc870c60b0782c25db4a7384637a892a12a0f2557c12475092f61824ad9a2aa

  • SHA512

    1a20e4093602680702478699025415abcd577927938e66dd800daa17e980cd05cf1beaeded9b0767fe8ad168147b957762f7b8b561593ffde66ea42dad16a3eb

  • SSDEEP

    1536:XlpVF6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3zH:XdF6F15h/zIn5S1aj+cU9CEw9aINejH

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4bc870c60b0782c25db4a7384637a892a12a0f2557c12475092f61824ad9a2aa
    .exe windows:6 windows


    Headers