Overview

overview

10

Static

static

10

d967b30031...54.exe

windows7-x64

d967b30031...54.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    d967b30031e5c6a72affe17fe1405a1d21e8da60bffdd0eb6481f51ae2f0ce54

  • Size

    109KB

  • MD5

    24b6cd5839fbda1058593c770de32e96

  • SHA1

    bd7f9e8443ac4a25e201092db9cbe45a5cf6789f

  • SHA256

    d967b30031e5c6a72affe17fe1405a1d21e8da60bffdd0eb6481f51ae2f0ce54

  • SHA512

    2c2193b9614a19044172576a9b5fdaa84954859c8026e9b6af028908720d1ebe1f8340bfce3254ce3dd283582c704d152272a3fc4290c0d001947c3e84b4475f

  • SSDEEP

    1536:/F6FQ85LFiGkSzyqzin5SP9cljcfcU9Csw9aINe3z0:/F6F15h/zIn5S1aj+cU9Csw9aINej0

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d967b30031e5c6a72affe17fe1405a1d21e8da60bffdd0eb6481f51ae2f0ce54
    .exe windows:6 windows


    Headers