General
-
Target
513574b5b9f4646ac0ffea66e8712f9694bc5f2c6b4dcc1ba54f7d98d5cd05ce
-
Size
620KB
-
Sample
241006-ytr67starj
-
MD5
d35626f8fcaf558f0180e40455afd92e
-
SHA1
007adc00f2d86e025a50543616d4d58bb95157df
-
SHA256
513574b5b9f4646ac0ffea66e8712f9694bc5f2c6b4dcc1ba54f7d98d5cd05ce
-
SHA512
fa4c2e4924b7d12de15f786e02bd7cba6abdc07ecec9406de0bb4c176972405540df6d0be49ae2ee6dc63dfdf3716da7ad3c3d2445ec3c9bbe1105b1b701fcdb
-
SSDEEP
12288:xi2cAro2HQVWAHkFSq2hAWJYlMUtrxlyuJVRe8y6wo:xi2Tro2H2HESq2eWJ6MQjySjy/o
Static task
static1
Behavioral task
behavioral1
Sample
513574b5b9f4646ac0ffea66e8712f9694bc5f2c6b4dcc1ba54f7d98d5cd05ce.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
513574b5b9f4646ac0ffea66e8712f9694bc5f2c6b4dcc1ba54f7d98d5cd05ce
-
Size
620KB
-
MD5
d35626f8fcaf558f0180e40455afd92e
-
SHA1
007adc00f2d86e025a50543616d4d58bb95157df
-
SHA256
513574b5b9f4646ac0ffea66e8712f9694bc5f2c6b4dcc1ba54f7d98d5cd05ce
-
SHA512
fa4c2e4924b7d12de15f786e02bd7cba6abdc07ecec9406de0bb4c176972405540df6d0be49ae2ee6dc63dfdf3716da7ad3c3d2445ec3c9bbe1105b1b701fcdb
-
SSDEEP
12288:xi2cAro2HQVWAHkFSq2hAWJYlMUtrxlyuJVRe8y6wo:xi2Tro2H2HESq2eWJ6MQjySjy/o
-
Gh0st RAT payload
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1