General
-
Target
d00360fe336dd3d907664bb0aad7731c297b57383c24c57c00afb5769064b773
-
Size
6.3MB
-
Sample
241206-tphdzs1qcr
-
MD5
b7526ff8350283086169d48ac7db333d
-
SHA1
1518bbd2dfdcfa2f31eaee2b1946edb7be586dc9
-
SHA256
d00360fe336dd3d907664bb0aad7731c297b57383c24c57c00afb5769064b773
-
SHA512
0b86f5bf972641acbd966426d71570d9fcf45bea861a7539b211843542f2b2c1178556cb39c85ec2ba2e89b02f05696fa714bb5a82361a0a84eadf71116f5f76
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNCD:QHPkVOBTKu
Static task
static1
Behavioral task
behavioral1
Sample
d00360fe336dd3d907664bb0aad7731c297b57383c24c57c00afb5769064b773.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
d00360fe336dd3d907664bb0aad7731c297b57383c24c57c00afb5769064b773
-
Size
6.3MB
-
MD5
b7526ff8350283086169d48ac7db333d
-
SHA1
1518bbd2dfdcfa2f31eaee2b1946edb7be586dc9
-
SHA256
d00360fe336dd3d907664bb0aad7731c297b57383c24c57c00afb5769064b773
-
SHA512
0b86f5bf972641acbd966426d71570d9fcf45bea861a7539b211843542f2b2c1178556cb39c85ec2ba2e89b02f05696fa714bb5a82361a0a84eadf71116f5f76
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNCD:QHPkVOBTKu
-
Gh0st RAT payload
-
Gh0strat family
-
Purplefox family
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1