General
-
Target
3093cf90addca7bbefe5eee024ca75f149a16d892873a20a2ff4052d9c693647
-
Size
1.3MB
-
Sample
241206-tpgsfswkhs
-
MD5
8ddb43200545067aa88371131269f9dd
-
SHA1
00d2e629017dd3d568a6b7e266a8976ba14a60ab
-
SHA256
3093cf90addca7bbefe5eee024ca75f149a16d892873a20a2ff4052d9c693647
-
SHA512
68d78af9545eee487daf1f990084aa7dda7eac425b675ae35735a2cd4b6e37ec044f7f1ea63850f5e4eeb5103119d962144fe1b1a708787605b7f379fecd5134
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNC:QHPkVOBTK
Static task
static1
Behavioral task
behavioral1
Sample
3093cf90addca7bbefe5eee024ca75f149a16d892873a20a2ff4052d9c693647.exe
Resource
win7-20241023-en
Malware Config
Targets
-
-
Target
3093cf90addca7bbefe5eee024ca75f149a16d892873a20a2ff4052d9c693647
-
Size
1.3MB
-
MD5
8ddb43200545067aa88371131269f9dd
-
SHA1
00d2e629017dd3d568a6b7e266a8976ba14a60ab
-
SHA256
3093cf90addca7bbefe5eee024ca75f149a16d892873a20a2ff4052d9c693647
-
SHA512
68d78af9545eee487daf1f990084aa7dda7eac425b675ae35735a2cd4b6e37ec044f7f1ea63850f5e4eeb5103119d962144fe1b1a708787605b7f379fecd5134
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNC:QHPkVOBTK
-
Gh0st RAT payload
-
Gh0strat family
-
Purplefox family
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1