Overview

overview

10

Static

static

10

cf89655130...03.exe

windows7-x64

cf89655130...03.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    cf89655130a881983cda612eccbc8448a8fec8085b8e64102ba786225200b103

  • Size

    109KB

  • MD5

    84764e6b6f5f782d4264df00aee162af

  • SHA1

    577d5d940a5d1bd548860e8ba00478b05e980279

  • SHA256

    cf89655130a881983cda612eccbc8448a8fec8085b8e64102ba786225200b103

  • SHA512

    3e29dd4c013d23eae56491398087cc96109cbb0b078006e6e965e7809eea0bf275fb253fff97d46cb6e91a2c24953260fcaa158d84a5104a2a87c553cad8bed4

  • SSDEEP

    1536:yVF6FQ85LFiGkSzyqzin5SP9cljcfcU9CJgGw9aINe3zj:6F6F15h/zIn5S1aj+cU9CJgGw9aINejj

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • cf89655130a881983cda612eccbc8448a8fec8085b8e64102ba786225200b103
    .exe windows:6 windows


    Headers