General
-
Target
fc41c2e1ba3720a855c0a4b2d31d2bce_JaffaCakes118
-
Size
257KB
-
Sample
240420-jgpszscd41
-
MD5
fc41c2e1ba3720a855c0a4b2d31d2bce
-
SHA1
963d8b735c9261b568579f6fdb2a7348853c2072
-
SHA256
2e404872e0d8ad6dfe7469f8c9dcd7be3e438581f79bc16210419a494a9ed7fb
-
SHA512
675732fe58f4fa1db1e0b399a80c28ec2bfe00d80d0dd5499b2ba65a8e5932e7e810187346ebb10c7c39af8306a37aa18fcd3901b789a1a052ed3d0298b5bb90
-
SSDEEP
3072:fLUECb8C2O6Zmus3xo5LuYS/XJiaWiu30c1Fwa+e59oECqrqsDEqChXt0x/EOjB:Y2wkmus365LuYS/BWiuUKyMqSgmGOj
Malware Config
Targets
-
-
Target
fc41c2e1ba3720a855c0a4b2d31d2bce_JaffaCakes118
-
Size
257KB
-
MD5
fc41c2e1ba3720a855c0a4b2d31d2bce
-
SHA1
963d8b735c9261b568579f6fdb2a7348853c2072
-
SHA256
2e404872e0d8ad6dfe7469f8c9dcd7be3e438581f79bc16210419a494a9ed7fb
-
SHA512
675732fe58f4fa1db1e0b399a80c28ec2bfe00d80d0dd5499b2ba65a8e5932e7e810187346ebb10c7c39af8306a37aa18fcd3901b789a1a052ed3d0298b5bb90
-
SSDEEP
3072:fLUECb8C2O6Zmus3xo5LuYS/XJiaWiu30c1Fwa+e59oECqrqsDEqChXt0x/EOjB:Y2wkmus365LuYS/BWiuUKyMqSgmGOj
Score10/10-
Gh0st RAT payload
-
Gh0strat
Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-