General
-
Target
35aec59212067bed0313fc1eecc0e17375c31af22ee9d71d9f4786dc291cc176
-
Size
225KB
-
Sample
221123-z7vd6ahg2v
-
MD5
68726f90d1dcc881c6f09063cb4090ec
-
SHA1
f4a0bcd5150324e4905145613d1d79fbc1e88e9d
-
SHA256
35aec59212067bed0313fc1eecc0e17375c31af22ee9d71d9f4786dc291cc176
-
SHA512
adfef78581ae13e2ffc78c76b1611cd7d8395f22a03e98cec79cf51a369e62be830e326a330313df42cce456761f6cd585565d72f0b3527f570a3935b0e401c7
-
SSDEEP
6144:K4ap3uPyr//UCTnkqkxtLLhoKlaxc4541m+Dvt39D:D83Z/rkqkDLhont58m23
Malware Config
Targets
-
-
Target
35aec59212067bed0313fc1eecc0e17375c31af22ee9d71d9f4786dc291cc176
-
Size
225KB
-
MD5
68726f90d1dcc881c6f09063cb4090ec
-
SHA1
f4a0bcd5150324e4905145613d1d79fbc1e88e9d
-
SHA256
35aec59212067bed0313fc1eecc0e17375c31af22ee9d71d9f4786dc291cc176
-
SHA512
adfef78581ae13e2ffc78c76b1611cd7d8395f22a03e98cec79cf51a369e62be830e326a330313df42cce456761f6cd585565d72f0b3527f570a3935b0e401c7
-
SSDEEP
6144:K4ap3uPyr//UCTnkqkxtLLhoKlaxc4541m+Dvt39D:D83Z/rkqkDLhont58m23
Score10/10-
Gh0st RAT payload
-
Gh0strat
Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-