Overview

overview

10

Static

static

10

56bb0c8916...83.exe

windows7-x64

10

56bb0c8916...83.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    56bb0c8916f48ebb7c03f858a89cf66f3259dacb30f1ab1fca806a9116dfab83

  • Size

    196KB

  • Sample

    221206-1m2heaad2w

  • MD5

    28b23ddcd35e983355b83fffbc06a550

  • SHA1

    019f1cbcbe2bb31ee1954d8a9d6e7d7019e56e0e

  • SHA256

    56bb0c8916f48ebb7c03f858a89cf66f3259dacb30f1ab1fca806a9116dfab83

  • SHA512

    c884411f85a9d260f2a49b915b073fc548411ebdd9045e9b1f2f70f70d1d95bea64a775478ca994398fe591ad16deacf772ac4dd1f4611b9e095e627feab241b

  • SSDEEP

    3072:VYAixrcYyNNBxIf58d6UuSMhXk22T94oz7vEEZzcEwJO7Ri+1aBvby6MuKo:VYRANBxIxh0u4TSg7vECzcz07Rpgp5

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      56bb0c8916f48ebb7c03f858a89cf66f3259dacb30f1ab1fca806a9116dfab83

    • Size

      196KB

    • MD5

      28b23ddcd35e983355b83fffbc06a550

    • SHA1

      019f1cbcbe2bb31ee1954d8a9d6e7d7019e56e0e

    • SHA256

      56bb0c8916f48ebb7c03f858a89cf66f3259dacb30f1ab1fca806a9116dfab83

    • SHA512

      c884411f85a9d260f2a49b915b073fc548411ebdd9045e9b1f2f70f70d1d95bea64a775478ca994398fe591ad16deacf772ac4dd1f4611b9e095e627feab241b

    • SSDEEP

      3072:VYAixrcYyNNBxIf58d6UuSMhXk22T94oz7vEEZzcEwJO7Ri+1aBvby6MuKo:VYRANBxIxh0u4TSg7vECzcz07Rpgp5

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks