General

  • Target

    0a607a7659e06dfd96668cd8a5c1d562ce03ee17450eb4e9b9067010ffedb5be

  • Size

    899KB

  • Sample

    240427-z5ewpaha5w

  • MD5

    5b3886c17b1c85ecd3abf7159d6fd688

  • SHA1

    8fa995d5d82bea9f4c2bdffc422150b07f76bbb8

  • SHA256

    0a607a7659e06dfd96668cd8a5c1d562ce03ee17450eb4e9b9067010ffedb5be

  • SHA512

    63da9c1f3d85347671d48340215d42b9f81ec14ddd594909c96d74947d39f07b381c025f1c87d374aba12421c64068ae20c9d43e7f6dcaa4376407edd19b3a92

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXH:7wqd87VH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      0a607a7659e06dfd96668cd8a5c1d562ce03ee17450eb4e9b9067010ffedb5be

    • Size

      899KB

    • MD5

      5b3886c17b1c85ecd3abf7159d6fd688

    • SHA1

      8fa995d5d82bea9f4c2bdffc422150b07f76bbb8

    • SHA256

      0a607a7659e06dfd96668cd8a5c1d562ce03ee17450eb4e9b9067010ffedb5be

    • SHA512

      63da9c1f3d85347671d48340215d42b9f81ec14ddd594909c96d74947d39f07b381c025f1c87d374aba12421c64068ae20c9d43e7f6dcaa4376407edd19b3a92

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXH:7wqd87VH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks