Overview

overview

10

Static

static

a97b348cad...91.exe

windows7-x64

10

a97b348cad...91.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a97b348cad4072783636c704ce87e428c8337baafd2674059bf8dee038cbfa91

  • Size

    217KB

  • Sample

    221203-s72pxadd53

  • MD5

    2c0567df441b28952e1716e4d2eb5620

  • SHA1

    9a377d78e5604079425511eec63406621659d3f1

  • SHA256

    a97b348cad4072783636c704ce87e428c8337baafd2674059bf8dee038cbfa91

  • SHA512

    c4b539073a2e310a083c6eaf2eec58a54aeba34dcc42a66b7b60f5222e38237424ad234c5349949f3d6feffdbcd29ae85fcb62645ee3a34dfdbd3e89fcaf7317

  • SSDEEP

    3072:qtXQhZkOLfuDg0PtOqzKONqsEykRLSDhPhOxNXv48a+ZBB6XREN4ptW7aFJg+:kOFStZzKqqsE6zOxxv/a+ZBB6W4Maz9

Score
10/10
gh0stratratupx

Malware Config

Targets

    • Target

      a97b348cad4072783636c704ce87e428c8337baafd2674059bf8dee038cbfa91

    • Size

      217KB

    • MD5

      2c0567df441b28952e1716e4d2eb5620

    • SHA1

      9a377d78e5604079425511eec63406621659d3f1

    • SHA256

      a97b348cad4072783636c704ce87e428c8337baafd2674059bf8dee038cbfa91

    • SHA512

      c4b539073a2e310a083c6eaf2eec58a54aeba34dcc42a66b7b60f5222e38237424ad234c5349949f3d6feffdbcd29ae85fcb62645ee3a34dfdbd3e89fcaf7317

    • SSDEEP

      3072:qtXQhZkOLfuDg0PtOqzKONqsEykRLSDhPhOxNXv48a+ZBB6XREN4ptW7aFJg+:kOFStZzKqqsE6zOxxv/a+ZBB6W4Maz9

    Score
    10/10
    gh0stratratupx

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks