General

  • Target

    9855499e9fbb34619fd1f0f02fc10dbdeb28c721d741d2f40d634fc05269f9ea

  • Size

    899KB

  • Sample

    240604-g9c9jsgf55

  • MD5

    6e58e06111f93835a542ddcf748cad0f

  • SHA1

    28c8b13998e0e4a6eaedd14cabbc10dbdf931d92

  • SHA256

    9855499e9fbb34619fd1f0f02fc10dbdeb28c721d741d2f40d634fc05269f9ea

  • SHA512

    7b5ce319c1238d6b491812d5f5af2dc937d36557ae3eb9c7cdc56d49201609e783127c013c7f6e2d5154474f9cf32d19acbd0c18fa2473fb0858030ddbf85a22

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXd:7wqd87Vd

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      9855499e9fbb34619fd1f0f02fc10dbdeb28c721d741d2f40d634fc05269f9ea

    • Size

      899KB

    • MD5

      6e58e06111f93835a542ddcf748cad0f

    • SHA1

      28c8b13998e0e4a6eaedd14cabbc10dbdf931d92

    • SHA256

      9855499e9fbb34619fd1f0f02fc10dbdeb28c721d741d2f40d634fc05269f9ea

    • SHA512

      7b5ce319c1238d6b491812d5f5af2dc937d36557ae3eb9c7cdc56d49201609e783127c013c7f6e2d5154474f9cf32d19acbd0c18fa2473fb0858030ddbf85a22

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXd:7wqd87Vd

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks