Overview

overview

10

Static

static

10

9913bad413...aa.exe

windows7-x64

9913bad413...aa.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    9913bad413429844888a7171cb5427d9997fe02a16f61046bba15c2bf469fdaa

  • Size

    109KB

  • MD5

    4cdaf3f199dc308c2edf2041325b0602

  • SHA1

    a77f7ab2a2b3a5840fc782c6f603e9e7c7fe6b61

  • SHA256

    9913bad413429844888a7171cb5427d9997fe02a16f61046bba15c2bf469fdaa

  • SHA512

    a64698b6582d1cc896e75f0d827ee89b416a67c170b09feaf1a91574463a35356ecf26b954a3aad40473865c45286b14b4731bbc5d981a884132e00cf8829d24

  • SSDEEP

    3072:DF6F15h/zIn5S1aj+cU9C8IgGw9aINejO:MFjhLI5SG+Fz9aIAi

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9913bad413429844888a7171cb5427d9997fe02a16f61046bba15c2bf469fdaa
    .exe windows:6 windows


    Headers