General

  • Target

    58261b53a729d233f57088e1b0485ae826a84b540e7d15e145f391b1491c4812

  • Size

    899KB

  • Sample

    240427-w1p93sdh92

  • MD5

    853b4bbe589142f09d01639664a1d436

  • SHA1

    8f3f8dd3b4c4873f6618b6c53136055d5d1e056c

  • SHA256

    58261b53a729d233f57088e1b0485ae826a84b540e7d15e145f391b1491c4812

  • SHA512

    9d31f735a87f741eae57b172f2dfcfc10480e27554e972d0f461dfa505533e4bc41c789d50caea763255c0166fa4094769026e37e3ca14135f98d24030902d69

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXg:7wqd87Vg

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      58261b53a729d233f57088e1b0485ae826a84b540e7d15e145f391b1491c4812

    • Size

      899KB

    • MD5

      853b4bbe589142f09d01639664a1d436

    • SHA1

      8f3f8dd3b4c4873f6618b6c53136055d5d1e056c

    • SHA256

      58261b53a729d233f57088e1b0485ae826a84b540e7d15e145f391b1491c4812

    • SHA512

      9d31f735a87f741eae57b172f2dfcfc10480e27554e972d0f461dfa505533e4bc41c789d50caea763255c0166fa4094769026e37e3ca14135f98d24030902d69

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXg:7wqd87Vg

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks