General
-
Target
a37e9ea24fac459afa112c61dc540ffd898faca0c85add4db69e3bb301fcde4e
-
Size
1.3MB
-
Sample
241211-xhew3avjbz
-
MD5
26334970fc0f862e9db97aff5cd9bd33
-
SHA1
05697aee9460c453f59de860a6c369ef8b7531c8
-
SHA256
a37e9ea24fac459afa112c61dc540ffd898faca0c85add4db69e3bb301fcde4e
-
SHA512
fba2d0455f73a927c10ec5d0c5c17aac7b31353491a9a77bc039708773b271efee6acc19eeea134f9526f8811bdeeed76134273bf18aa31d27eeaac5e30aedfe
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNZ:QHPkVOBTK
Static task
static1
Behavioral task
behavioral1
Sample
a37e9ea24fac459afa112c61dc540ffd898faca0c85add4db69e3bb301fcde4e.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
a37e9ea24fac459afa112c61dc540ffd898faca0c85add4db69e3bb301fcde4e
-
Size
1.3MB
-
MD5
26334970fc0f862e9db97aff5cd9bd33
-
SHA1
05697aee9460c453f59de860a6c369ef8b7531c8
-
SHA256
a37e9ea24fac459afa112c61dc540ffd898faca0c85add4db69e3bb301fcde4e
-
SHA512
fba2d0455f73a927c10ec5d0c5c17aac7b31353491a9a77bc039708773b271efee6acc19eeea134f9526f8811bdeeed76134273bf18aa31d27eeaac5e30aedfe
-
SSDEEP
24576:dOyHutimZ9VSly2hVvHW6qMnSbTBBhBMNZ:QHPkVOBTK
-
Gh0st RAT payload
-
Gh0strat family
-
Purplefox family
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1