Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    780af70d1e88134ccb3de4469c6d60107dbc22ded4849672ae93fc66d8ceaa05

  • Size

    899KB

  • Sample

    240531-f699fagf3y

  • MD5

    99e3cf55cdaa8852d88dd3a715602a9d

  • SHA1

    b9c082d4141638dc43ca4606ca81f33414c3845d

  • SHA256

    780af70d1e88134ccb3de4469c6d60107dbc22ded4849672ae93fc66d8ceaa05

  • SHA512

    83ce4ae23692b2fcdb810c3ef249e00dceb32d7a97d5babedb4e6e37fa90317ac3e7ee8f16eaaa708e00eaeeb678b2fd6118992ed5999f12107f2be9d15c9285

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXT:7wqd87VT

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      780af70d1e88134ccb3de4469c6d60107dbc22ded4849672ae93fc66d8ceaa05

    • Size

      899KB

    • MD5

      99e3cf55cdaa8852d88dd3a715602a9d

    • SHA1

      b9c082d4141638dc43ca4606ca81f33414c3845d

    • SHA256

      780af70d1e88134ccb3de4469c6d60107dbc22ded4849672ae93fc66d8ceaa05

    • SHA512

      83ce4ae23692b2fcdb810c3ef249e00dceb32d7a97d5babedb4e6e37fa90317ac3e7ee8f16eaaa708e00eaeeb678b2fd6118992ed5999f12107f2be9d15c9285

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXT:7wqd87VT

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks