Overview

overview

10

Static

static

10

f4cd48937c...2c.exe

windows7-x64

10

f4cd48937c...2c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f4cd48937c0a44e9cca159c756c7bdc3036e320f2cb06cbdce926d7200182b2c

  • Size

    464KB

  • Sample

    221204-b7a4hsbb7v

  • MD5

    9c7ad70726381e71c212a544847c42b5

  • SHA1

    7d1d0a486a0181e29a3e1f2929e9e168dd7ebc3f

  • SHA256

    f4cd48937c0a44e9cca159c756c7bdc3036e320f2cb06cbdce926d7200182b2c

  • SHA512

    03ddeb5861db9dfa822985341d103bdabc32f7524b9ad9457792b786dfc7603759a3b33946a65138b1dd36fefb8a028d2a54f992a088b837112c0aa2604a3d40

  • SSDEEP

    12288:UigdXGKnZZghbU14KF0RZtYj2x7DgalsrZFVhPzpY:DgdXhnZZubS4K6ftJ7D9qNFVDY

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      f4cd48937c0a44e9cca159c756c7bdc3036e320f2cb06cbdce926d7200182b2c

    • Size

      464KB

    • MD5

      9c7ad70726381e71c212a544847c42b5

    • SHA1

      7d1d0a486a0181e29a3e1f2929e9e168dd7ebc3f

    • SHA256

      f4cd48937c0a44e9cca159c756c7bdc3036e320f2cb06cbdce926d7200182b2c

    • SHA512

      03ddeb5861db9dfa822985341d103bdabc32f7524b9ad9457792b786dfc7603759a3b33946a65138b1dd36fefb8a028d2a54f992a088b837112c0aa2604a3d40

    • SSDEEP

      12288:UigdXGKnZZghbU14KF0RZtYj2x7DgalsrZFVhPzpY:DgdXhnZZubS4K6ftJ7D9qNFVDY

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks