General

  • Target

    bc7559fe396b7fbeeb728e789af11a508272ded108b5aa21ed4fd68a8fa5225c

  • Size

    899KB

  • Sample

    240427-wy19kaed6v

  • MD5

    a022a5c8269488e764d2ae792b868141

  • SHA1

    34551fc3423e0e0f1acf3a71f77fc9857f27d08d

  • SHA256

    bc7559fe396b7fbeeb728e789af11a508272ded108b5aa21ed4fd68a8fa5225c

  • SHA512

    204e5190305aa6b9ed3d7ef778021dd8952f70951a927f520b53f52abd60273205e862783ffdef7fa9960b9445e0fdb65b8416f7fba53440402db7c7d056537e

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXh:7wqd87Vh

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      bc7559fe396b7fbeeb728e789af11a508272ded108b5aa21ed4fd68a8fa5225c

    • Size

      899KB

    • MD5

      a022a5c8269488e764d2ae792b868141

    • SHA1

      34551fc3423e0e0f1acf3a71f77fc9857f27d08d

    • SHA256

      bc7559fe396b7fbeeb728e789af11a508272ded108b5aa21ed4fd68a8fa5225c

    • SHA512

      204e5190305aa6b9ed3d7ef778021dd8952f70951a927f520b53f52abd60273205e862783ffdef7fa9960b9445e0fdb65b8416f7fba53440402db7c7d056537e

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXh:7wqd87Vh

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks