Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
afe310c5506b53e95613392c60b4146ba6a94ee2d46c49c900f21a81ff2a1fe7
-
Size
51KB
-
Sample
240530-bkdwwsgh9z
-
MD5
9a61b88ff9a184389aaf4cbcb57519db
-
SHA1
85785bdd71ac8e6552e4b7b805bc0ae6fbdf3b50
-
SHA256
afe310c5506b53e95613392c60b4146ba6a94ee2d46c49c900f21a81ff2a1fe7
-
SHA512
3c0efbb280c7b03b30debaffc4d3981b731208541184e1b70707818c7f68b3bbd71022a2266faca6438898b0e2615e76556fe900cce27f86518837cab2b8d8de
-
SSDEEP
1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLSJYH5:1dWubF3n9S91BF3fbo+JYH5
Malware Config
Extracted
gh0strat
kinh.xmcxmr.com
Targets
-
-
Target
afe310c5506b53e95613392c60b4146ba6a94ee2d46c49c900f21a81ff2a1fe7
-
Size
51KB
-
MD5
9a61b88ff9a184389aaf4cbcb57519db
-
SHA1
85785bdd71ac8e6552e4b7b805bc0ae6fbdf3b50
-
SHA256
afe310c5506b53e95613392c60b4146ba6a94ee2d46c49c900f21a81ff2a1fe7
-
SHA512
3c0efbb280c7b03b30debaffc4d3981b731208541184e1b70707818c7f68b3bbd71022a2266faca6438898b0e2615e76556fe900cce27f86518837cab2b8d8de
-
SSDEEP
1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLSJYH5:1dWubF3n9S91BF3fbo+JYH5
Score10/10-
Gh0st RAT payload
-
Gh0strat
Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
-