Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b761f734be94d56675a34fa31273e80759ceea9e854cb88858f44f7f5ede3fa4

  • Size

    899KB

  • Sample

    240530-ckt4jsbf95

  • MD5

    00573434627fe850fe33c8271afee950

  • SHA1

    0097f29eea333c0a807aeed9f198b1bdd1c8ac5f

  • SHA256

    b761f734be94d56675a34fa31273e80759ceea9e854cb88858f44f7f5ede3fa4

  • SHA512

    eb820e2662d71f78f2ffea85ddf962fb4c16816543f3db72746b198aeccbf2b873cf51657de2872fa38e250652f4e4c82636f9fd98fcd0e4ed47fc745f1b0157

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXj:7wqd87Vj

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      b761f734be94d56675a34fa31273e80759ceea9e854cb88858f44f7f5ede3fa4

    • Size

      899KB

    • MD5

      00573434627fe850fe33c8271afee950

    • SHA1

      0097f29eea333c0a807aeed9f198b1bdd1c8ac5f

    • SHA256

      b761f734be94d56675a34fa31273e80759ceea9e854cb88858f44f7f5ede3fa4

    • SHA512

      eb820e2662d71f78f2ffea85ddf962fb4c16816543f3db72746b198aeccbf2b873cf51657de2872fa38e250652f4e4c82636f9fd98fcd0e4ed47fc745f1b0157

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXj:7wqd87Vj

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks