General
-
Target
fd293495de7c907e8ff463a9a6ef0b1ab1424c910fc0f4e4c519f578edfeb2c7
-
Size
1.3MB
-
Sample
241113-vcnkxawcln
-
MD5
f23fbbe308c085aff734cfc1c9d82e26
-
SHA1
21751b43cd486dbb37f9f45e561501735b0c2619
-
SHA256
fd293495de7c907e8ff463a9a6ef0b1ab1424c910fc0f4e4c519f578edfeb2c7
-
SHA512
52e74a107d022da42221f84f7d090bbcb04cd717efbe21963abbb9a2c9fad82f225d70ff942d6d9d7534191830592199f5045aafb8d0608ce533df5e65a89ee0
-
SSDEEP
24576:209tv9/7JtDElDEExIko2H2HESq2eWJ6MQjySjy+LowpeITTy:209XJt4HIN2H2tFvduySppeI3y
Static task
static1
Behavioral task
behavioral1
Sample
fd293495de7c907e8ff463a9a6ef0b1ab1424c910fc0f4e4c519f578edfeb2c7.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
fd293495de7c907e8ff463a9a6ef0b1ab1424c910fc0f4e4c519f578edfeb2c7
-
Size
1.3MB
-
MD5
f23fbbe308c085aff734cfc1c9d82e26
-
SHA1
21751b43cd486dbb37f9f45e561501735b0c2619
-
SHA256
fd293495de7c907e8ff463a9a6ef0b1ab1424c910fc0f4e4c519f578edfeb2c7
-
SHA512
52e74a107d022da42221f84f7d090bbcb04cd717efbe21963abbb9a2c9fad82f225d70ff942d6d9d7534191830592199f5045aafb8d0608ce533df5e65a89ee0
-
SSDEEP
24576:209tv9/7JtDElDEExIko2H2HESq2eWJ6MQjySjy+LowpeITTy:209XJt4HIN2H2tFvduySppeI3y
-
Gh0st RAT payload
-
Gh0strat family
-
Purplefox family
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1