Overview

overview

10

Static

static

3

120ad38a3b...e0.exe

windows7-x64

10

120ad38a3b...e0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    120ad38a3b9110d801aad7895924d2a67927b0f5ecffe5a3f7a27258a68124e0

  • Size

    572KB

  • Sample

    240221-jf5stada3z

  • MD5

    0e53c998f00fb286341932e6d1666382

  • SHA1

    38e8c9e385f3fb9b5ab3888b0d60711642cf0d12

  • SHA256

    120ad38a3b9110d801aad7895924d2a67927b0f5ecffe5a3f7a27258a68124e0

  • SHA512

    630c3b57329acf0b958577430ba9b068bd9dbb89a49017a077a47df2d1d3f15a2646c9d414066abdcaa3acc324e419cd10e649e4d2863c780305007e6328b32e

  • SSDEEP

    6144:pZ3vGorK0bCP7unXmpk93nw7kNNnfNHQBHysPph+:pZ3vGorXuzvC3BQTPH+

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      120ad38a3b9110d801aad7895924d2a67927b0f5ecffe5a3f7a27258a68124e0

    • Size

      572KB

    • MD5

      0e53c998f00fb286341932e6d1666382

    • SHA1

      38e8c9e385f3fb9b5ab3888b0d60711642cf0d12

    • SHA256

      120ad38a3b9110d801aad7895924d2a67927b0f5ecffe5a3f7a27258a68124e0

    • SHA512

      630c3b57329acf0b958577430ba9b068bd9dbb89a49017a077a47df2d1d3f15a2646c9d414066abdcaa3acc324e419cd10e649e4d2863c780305007e6328b32e

    • SSDEEP

      6144:pZ3vGorK0bCP7unXmpk93nw7kNNnfNHQBHysPph+:pZ3vGorXuzvC3BQTPH+

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks