gh0strat | 6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

6ceeb1ed82...19.dll

windows7-x64

6ceeb1ed82...19.dll

windows10-2004-x64

Sharing

General

Target

6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319
Size

94KB
Sample

221030-wgaqaacee7
MD5

8272ad4deed4311565a04ca13e26d8c6
SHA1

154263be6e150d8565b3db7e7d24fc30a93f9e60
SHA256

6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319
SHA512

4350de006bfc2d8c6ed77a096f6a0545a159c59b67e2864c59f0826322d5327a485b6054b4fed5cc7589b83a70385510d94c518ddaf106c67bc9a0cab1b293ae
SSDEEP

1536:FPU/q1TDnXo7vRAI9k1Lcd/nRLie+ccSpJfDJAp2ycnSr6hK:FPU/qxXo7iI9uLcxUe+nSpJDJA7cnS2h

Score

10^/10

gh0strat rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319
- Size
  
  94KB
- MD5
  
  8272ad4deed4311565a04ca13e26d8c6
- SHA1
  
  154263be6e150d8565b3db7e7d24fc30a93f9e60
- SHA256
  
  6ceeb1ed827c69d3f0370a9eeca7428be6e1fedbc27fe29f772eb6028d152319
- SHA512
  
  4350de006bfc2d8c6ed77a096f6a0545a159c59b67e2864c59f0826322d5327a485b6054b4fed5cc7589b83a70385510d94c518ddaf106c67bc9a0cab1b293ae
- SSDEEP
  
  1536:FPU/q1TDnXo7vRAI9k1Lcd/nRLie+ccSpJfDJAp2ycnSr6hK:FPU/qxXo7iI9uLcxUe+nSpJDJA7cnS2h
Score

10^/10

gh0strat rat
- Gh0st RAT payload
- Gh0strat
  Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
  rat gh0strat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy