General

  • Target

    f4ee7bccd441208bf970a9b0319557d775ec9638d403898043afb406b8c82a7b

  • Size

    899KB

  • Sample

    240603-lkq7bsac5w

  • MD5

    2f997327e13f86a0cf5a4fc5d88a2359

  • SHA1

    78953a6a01b2692c0689161150fe5fab7e873927

  • SHA256

    f4ee7bccd441208bf970a9b0319557d775ec9638d403898043afb406b8c82a7b

  • SHA512

    c9025ea8095b786300b0a259a1ff784736e80d7bc3aa6a6e549e3504645c24a750ceec129cacd0edb96205b92e605ec88ef3f82df5e7ad1e6c34d3a1d493139b

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX7:7wqd87V7

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      f4ee7bccd441208bf970a9b0319557d775ec9638d403898043afb406b8c82a7b

    • Size

      899KB

    • MD5

      2f997327e13f86a0cf5a4fc5d88a2359

    • SHA1

      78953a6a01b2692c0689161150fe5fab7e873927

    • SHA256

      f4ee7bccd441208bf970a9b0319557d775ec9638d403898043afb406b8c82a7b

    • SHA512

      c9025ea8095b786300b0a259a1ff784736e80d7bc3aa6a6e549e3504645c24a750ceec129cacd0edb96205b92e605ec88ef3f82df5e7ad1e6c34d3a1d493139b

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX7:7wqd87V7

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks