Overview

overview

10

Static

static

10

249009648a...92.exe

windows7-x64

10

249009648a...92.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    75efabc3056a03a80af5f744f2c7f616.bin

  • Size

    416KB

  • MD5

    e18a0255d46a15f070d946558d7a7e02

  • SHA1

    6f3368e206f5f04378090173282e42a8c6f51781

  • SHA256

    503f68ee6b9cb184e1dad186bb3f7e200a97b0ebd56de4a2bdd7e78d6c10e3aa

  • SHA512

    93e0f7a4456220addd290c317a531267e4187664ade4308a88d79288d4d86c1775db83d06e15c08e3ba67604005659f94bb9272403090699e53ebe3921e90e45

  • SSDEEP

    6144:qTglhfCZejLaR6ZzuO6+8yRaBnU1bcYK2Zrr2SyI4ODk/TuPALhbPMPFBE1FxQNT:7J6CLyC6+NKnkh2XwDwTuoLeiQ86jh

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 75efabc3056a03a80af5f744f2c7f616.bin
    .zip

    Password: infected

  • 249009648a4e88d2cd0fb5e595c911e5dca3ec1d70252981554ab0331800cb92.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections