Overview

overview

10

Static

static

10

ba78b29a77...99.exe

windows7-x64

ba78b29a77...99.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba78b29a776e06ec241ebe943ac8e9d794180b5a25ee9808a0d06d0330318599

  • Size

    109KB

  • MD5

    dc6ec2ce7caa6d76c88641325c786cc5

  • SHA1

    2042388e954c9cb7c35196b050068e4b9b775551

  • SHA256

    ba78b29a776e06ec241ebe943ac8e9d794180b5a25ee9808a0d06d0330318599

  • SHA512

    efd8fdb2fb729fe658875b5fff817154214b883afd7f98cf8518b8f364e064b616a5edc75bc6d0fcfa91aba97ef32ccc197e40caef63609d89d793e61c0c40df

  • SSDEEP

    1536:BF6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3z6:BF6F15h/zIn5S1aj+cU9CEw9aINej6

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ba78b29a776e06ec241ebe943ac8e9d794180b5a25ee9808a0d06d0330318599
    .exe windows:6 windows


    Headers