gh0strat | 71f6f26882ea88579313a1e7aa50a0cfe5efa08a8e316ab583ab9eefc05c0b62

General

Target

71f6f26882ea88579313a1e7aa50a0cfe5efa08a8e316ab583ab9eefc05c0b62
Size

109KB
MD5

3ee23562b51cc7baf63ca9818888c2fe
SHA1

58804184f8e69fb69c1c90249b0fa4c84e4f6d19
SHA256

71f6f26882ea88579313a1e7aa50a0cfe5efa08a8e316ab583ab9eefc05c0b62
SHA512

274f84156c2ca584683f27f4683c6b21b69953f2c35218423153c40c44a1d58146f92bb98cca4b2ecb8de2c1706eb0a57b461677c4a43843fecb4cb246087ba2
SSDEEP

3072:kF6F15h/zIn5S1aj+cU9C8HgGw9aINej/:rFjhLI5SG+FG9aIAr

Score

10^/10

gh0strat

Gh0st RAT payload 1 IoCs

resource	yara_rule
sample	family_gh0strat

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
sample	acprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71f6f26882ea88579313a1e7aa50a0cfe5efa08a8e316ab583ab9eefc05c0b62

71f6f26882ea88579313a1e7aa50a0cfe5efa08a8e316ab583ab9eefc05c0b62
.exe windows:6 windows

Headers