General

  • Target

    e1dae2551a67e76cfcc2ce4df741e74709b3f5134d567b4959351746fbbe1029

  • Size

    899KB

  • Sample

    240604-3lvdtaga98

  • MD5

    b99541c237f17206cb4b86f35a5302dc

  • SHA1

    c1a925a7f594e0df7b952f644118dc9e78aa1636

  • SHA256

    e1dae2551a67e76cfcc2ce4df741e74709b3f5134d567b4959351746fbbe1029

  • SHA512

    572b900712c6946e025760b46783c0002bc96581f746293c615a3357899a132faecf495a2c5eff30f63e415923a7ee62056d1b12da878c3d553a62e05e62dccd

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX5:7wqd87V5

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      e1dae2551a67e76cfcc2ce4df741e74709b3f5134d567b4959351746fbbe1029

    • Size

      899KB

    • MD5

      b99541c237f17206cb4b86f35a5302dc

    • SHA1

      c1a925a7f594e0df7b952f644118dc9e78aa1636

    • SHA256

      e1dae2551a67e76cfcc2ce4df741e74709b3f5134d567b4959351746fbbe1029

    • SHA512

      572b900712c6946e025760b46783c0002bc96581f746293c615a3357899a132faecf495a2c5eff30f63e415923a7ee62056d1b12da878c3d553a62e05e62dccd

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX5:7wqd87V5

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks