Overview

overview

10

Static

static

10

05a2044465...98.exe

windows7-x64

05a2044465...98.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    05a20444653a20a3f8d3204579617d57c57030b91534e9200cd4f7835005c498

  • Size

    109KB

  • MD5

    79a89050f492ac06461ab42716c4773e

  • SHA1

    fec7606aeb18897b3b923fe574708ed561f2f401

  • SHA256

    05a20444653a20a3f8d3204579617d57c57030b91534e9200cd4f7835005c498

  • SHA512

    a8b19482964ed4929cd137c04b02edad28f1fbe4548116f797e05ce7fa1337e41976eb992c069565b7101eddd6334b17ee06e599f4b542c35f443a41d8ac300d

  • SSDEEP

    1536:0F6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3zU:0F6F15h/zIn5S1aj+cU9CEw9aINejU

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 05a20444653a20a3f8d3204579617d57c57030b91534e9200cd4f7835005c498
    .exe windows:6 windows


    Headers