General

  • Target

    fa2fd89b8ea2199925aac7ca042839383af61dc5e59dedda25652f01ea66b378

  • Size

    899KB

  • Sample

    240427-y417vsga7x

  • MD5

    ec23cd3049be68fc6eb4c2cc19e500e3

  • SHA1

    bad474dc5877c13b3b0408cdd04163ef4476b175

  • SHA256

    fa2fd89b8ea2199925aac7ca042839383af61dc5e59dedda25652f01ea66b378

  • SHA512

    cebd95c327e2e775e64692dc6eeec6f7ec0f9326ad8edd8f79dace9fa1c5145330e4a758a43a155bc0563fa07981ef203cae01cf319bcbe866e594d5fd8c737b

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXM:7wqd87VM

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      fa2fd89b8ea2199925aac7ca042839383af61dc5e59dedda25652f01ea66b378

    • Size

      899KB

    • MD5

      ec23cd3049be68fc6eb4c2cc19e500e3

    • SHA1

      bad474dc5877c13b3b0408cdd04163ef4476b175

    • SHA256

      fa2fd89b8ea2199925aac7ca042839383af61dc5e59dedda25652f01ea66b378

    • SHA512

      cebd95c327e2e775e64692dc6eeec6f7ec0f9326ad8edd8f79dace9fa1c5145330e4a758a43a155bc0563fa07981ef203cae01cf319bcbe866e594d5fd8c737b

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXM:7wqd87VM

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks