Overview

overview

10

Static

static

10

5577830c84...18.dll

windows7-x64

8

5577830c84...18.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5577830c84a55f0fbf46f6930d8eef91_JaffaCakes118

  • Size

    47KB

  • MD5

    5577830c84a55f0fbf46f6930d8eef91

  • SHA1

    efeec976af21dda022da453a5136027885eee6c9

  • SHA256

    cdcc343fd4a17a4803229f9315d4e488ebac7a29c224414ec244017dcc64a81a

  • SHA512

    06aeaf80fbd3d18ab168396a1c7980a93b9b5762fb1b9d2ead0f117c6300f8f99f028af8632cbe1f42ded774a979c6e214e44d6b8e267f9d1f608599299081ef

  • SSDEEP

    768:V7q/iCKvQ9Vp04oVWTRxmGq2kMzQ5l9bOYc79DERVd2W8IP2qQdMLwo1xnMuEr3F:V7KnK4MkxmPBMzaORQVd2HIPyY5nMnzF

Score
10/10
upxgh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 5577830c84a55f0fbf46f6930d8eef91_JaffaCakes118
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections