Overview

overview

10

Static

static

10

312da51fb8...ff.exe

windows7-x64

312da51fb8...ff.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    312da51fb8144a4e8678ec5ad4c137913ad3cf1ec65c7b0dd026c9454bc2e6ff

  • Size

    109KB

  • MD5

    84903babd703b7117bf7acca05c2a3ff

  • SHA1

    022b6a7da51b42879cd28795617eb7f1bb8b808d

  • SHA256

    312da51fb8144a4e8678ec5ad4c137913ad3cf1ec65c7b0dd026c9454bc2e6ff

  • SHA512

    38980592bff35e63d875af7fd2af0c39474f521c9f575c0a0f70fd271ae12617d1e91a941917c917a8c840d8ce89923a40662bf0ff6d020607ba921a77f0a602

  • SSDEEP

    1536:fGF6FQ85LFiGkSzyqzin5SP9cljcfcU9CEw9aINe3z9:fGF6F15h/zIn5S1aj+cU9CEw9aINej9

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 312da51fb8144a4e8678ec5ad4c137913ad3cf1ec65c7b0dd026c9454bc2e6ff
    .exe windows:6 windows


    Headers