gh0strat | 973d84071ddbed2c3d454b332a4c8224ca494e1229084af642975fecfc1ed528

General

Target

973d84071ddbed2c3d454b332a4c8224ca494e1229084af642975fecfc1ed528
Size

109KB
MD5

314e245f0a29cbc753de652b1e7c147e
SHA1

c443b799e547b0ff9183298e1fa32aba2fe9597e
SHA256

973d84071ddbed2c3d454b332a4c8224ca494e1229084af642975fecfc1ed528
SHA512

fc679890b4d0ddf5438d940724867ab30722ecc46f754e838ac67673707055cc4f9ace3b7f99d321c1db122e3f8343ade3277feb7d70588b74244b27d3bbe4c8
SSDEEP

1536:ikUF6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3zJ:PUF6F15h/zIn5S1aj+cU9CEw9aINejJ

Score

10^/10

gh0strat

Gh0st RAT payload 1 IoCs

resource	yara_rule
sample	family_gh0strat

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
973d84071ddbed2c3d454b332a4c8224ca494e1229084af642975fecfc1ed528

973d84071ddbed2c3d454b332a4c8224ca494e1229084af642975fecfc1ed528
.exe windows:6 windows

Headers