General
-
Target
d673611d726d39cfbcf3f28f5834b44cafaff82d70eabc9a0e9ab111549abcef
-
Size
843KB
-
Sample
241006-yrzs9sshrj
-
MD5
72d713ac7194e970b5d7f927967e3688
-
SHA1
b4ad499cdcb1d3409270ec9b86b6deb9397a28ae
-
SHA256
d673611d726d39cfbcf3f28f5834b44cafaff82d70eabc9a0e9ab111549abcef
-
SHA512
59f60ed53470a09e2fa7db16ba41c990894260ca923614a0a9ecc77e008c718d4771193d73a0243408b2a1efb64a4e4e167c25d8d46e39e3cd306f06e9546636
-
SSDEEP
24576:iKnZJNXNon3Nr+C+l/pB4dCHyWdVbStQyRVp:iKnZj6ul/p+WnSt7p
Behavioral task
behavioral1
Sample
d673611d726d39cfbcf3f28f5834b44cafaff82d70eabc9a0e9ab111549abcef.exe
Resource
win7-20240704-en
Malware Config
Targets
-
-
Target
d673611d726d39cfbcf3f28f5834b44cafaff82d70eabc9a0e9ab111549abcef
-
Size
843KB
-
MD5
72d713ac7194e970b5d7f927967e3688
-
SHA1
b4ad499cdcb1d3409270ec9b86b6deb9397a28ae
-
SHA256
d673611d726d39cfbcf3f28f5834b44cafaff82d70eabc9a0e9ab111549abcef
-
SHA512
59f60ed53470a09e2fa7db16ba41c990894260ca923614a0a9ecc77e008c718d4771193d73a0243408b2a1efb64a4e4e167c25d8d46e39e3cd306f06e9546636
-
SSDEEP
24576:iKnZJNXNon3Nr+C+l/pB4dCHyWdVbStQyRVp:iKnZj6ul/p+WnSt7p
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1