Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    47207f1c3f2c93122a923c355d0f0024818535195c5d50acf75ec4007a28a0bf

  • Size

    899KB

  • Sample

    240530-ds2n2ace3w

  • MD5

    e068397253fa2213d96fd73d0a78043b

  • SHA1

    9e9025f4ab045d1eb992f499ca0aae6cd0747f44

  • SHA256

    47207f1c3f2c93122a923c355d0f0024818535195c5d50acf75ec4007a28a0bf

  • SHA512

    b3ae24e74c5021a764ca4af98e89581b13657b2146a385074bb50731c90e788c883118cff6a156d26efcdcfb11a2118592085b853e3b99766c7ab7d009d49f80

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXo:7wqd87Vo

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      47207f1c3f2c93122a923c355d0f0024818535195c5d50acf75ec4007a28a0bf

    • Size

      899KB

    • MD5

      e068397253fa2213d96fd73d0a78043b

    • SHA1

      9e9025f4ab045d1eb992f499ca0aae6cd0747f44

    • SHA256

      47207f1c3f2c93122a923c355d0f0024818535195c5d50acf75ec4007a28a0bf

    • SHA512

      b3ae24e74c5021a764ca4af98e89581b13657b2146a385074bb50731c90e788c883118cff6a156d26efcdcfb11a2118592085b853e3b99766c7ab7d009d49f80

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXo:7wqd87Vo

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks