General

  • Target

    06c47c454cabd58bbb9523dc245f1f16ba83ebc75842b3e43c2c87b516a209dd

  • Size

    899KB

  • Sample

    240604-f8jjhafc86

  • MD5

    b9f5433061a6ef709aff33c8e9f91aac

  • SHA1

    5ed2b78b3d8ce976210e68a784d48055483b3501

  • SHA256

    06c47c454cabd58bbb9523dc245f1f16ba83ebc75842b3e43c2c87b516a209dd

  • SHA512

    8605d8c81e17a28ec716cf3345ee3b57556fe16f7f5b5ac25a7b51c116c1bac1be675c58fb3cfb90050d7e73818cb10be2f5f9a013650e2d2d7f765382de39e5

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXq:7wqd87Vq

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      06c47c454cabd58bbb9523dc245f1f16ba83ebc75842b3e43c2c87b516a209dd

    • Size

      899KB

    • MD5

      b9f5433061a6ef709aff33c8e9f91aac

    • SHA1

      5ed2b78b3d8ce976210e68a784d48055483b3501

    • SHA256

      06c47c454cabd58bbb9523dc245f1f16ba83ebc75842b3e43c2c87b516a209dd

    • SHA512

      8605d8c81e17a28ec716cf3345ee3b57556fe16f7f5b5ac25a7b51c116c1bac1be675c58fb3cfb90050d7e73818cb10be2f5f9a013650e2d2d7f765382de39e5

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXq:7wqd87Vq

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks