Overview

overview

10

Static

static

10

fba96401ba...25.exe

windows7-x64

fba96401ba...25.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    fba96401ba89b9872ac1a6b0b89de3dc952103555de26a3367c282abbaf37d25

  • Size

    109KB

  • MD5

    60d5205b94a8f44b875a5026ff082027

  • SHA1

    81f99d54a317db8eae324f81f685501c34243812

  • SHA256

    fba96401ba89b9872ac1a6b0b89de3dc952103555de26a3367c282abbaf37d25

  • SHA512

    fd79cc2c01423b770c53da9b0113fa609893b36e9811e4d96e8c236a2d9ba2bdb4a4ec461e9eebbaf538f2344be6afc4906def498134536c2862dfd770da541f

  • SSDEEP

    1536:2F6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3zz:2F6F15h/zIn5S1aj+cU9CEw9aINejz

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fba96401ba89b9872ac1a6b0b89de3dc952103555de26a3367c282abbaf37d25
    .exe windows:6 windows


    Headers