gh0strat | 94ccd38497eb752e75e752208e94b81adfc6504203ab47bf2e9f51e880161398 | Triage

Submit
Reports

Overview

overview

Static

static

2276-7-0x0...ry.exe

windows7-x64

2276-7-0x0...ry.exe

windows10-2004-x64

Sharing

General

Target

2276-7-0x0000000000400000-0x000000000233B000-memory.dmp
Size

31.2MB
Sample

240525-tt9zssad2z
MD5

7a9949698794f03cd2b3361b8325af59
SHA1

a704348510472392e565a722c3d52996d60df8dd
SHA256

94ccd38497eb752e75e752208e94b81adfc6504203ab47bf2e9f51e880161398
SHA512

bc8db923203288267b4cbc351d2d3aa043cb7d6d295ce94d14a37b9b85632cef67fd86aecde89bc871b6779a29e7c8c4fdec54ce6b2c458f8979274f92b6f7fb
SSDEEP

196608:m0j2VCjP3Gx0GaN+hn0u50iIoysG+Xcni0iYvr00E5GqJd5igOcSWUOMzn0O1koV:6mGxrz0utIoLv520IiBOcSWUOMr0Klz

Score

10^/10

gh0strat purplefox rootkit upx

Static task

static1

rootkit upx gh0strat purplefox

6 signatures

Behavioral task

behavioral1

Sample

2276-7-0x0000000000400000-0x000000000233B000-memory.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2276-7-0x0000000000400000-0x000000000233B000-memory.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

gh0strat

C2

hfs666.top

Targets

- Target
  
  2276-7-0x0000000000400000-0x000000000233B000-memory.dmp
- Size
  
  31.2MB
- MD5
  
  7a9949698794f03cd2b3361b8325af59
- SHA1
  
  a704348510472392e565a722c3d52996d60df8dd
- SHA256
  
  94ccd38497eb752e75e752208e94b81adfc6504203ab47bf2e9f51e880161398
- SHA512
  
  bc8db923203288267b4cbc351d2d3aa043cb7d6d295ce94d14a37b9b85632cef67fd86aecde89bc871b6779a29e7c8c4fdec54ce6b2c458f8979274f92b6f7fb
- SSDEEP
  
  196608:m0j2VCjP3Gx0GaN+hn0u50iIoysG+Xcni0iYvr00E5GqJd5igOcSWUOMzn0O1koV:6mGxrz0utIoLv520IiBOcSWUOMr0Klz
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

rootkitupxgh0stratpurplefox

behavioral1

behavioral2

© 2018-2024

Terms | Privacy