General

  • Target

    9fce4b57361b58f69ef29f481ef889629bb427f08da13d5c43a711d1f47dee0d

  • Size

    899KB

  • Sample

    240604-hbev6agg49

  • MD5

    f3ea069f77b9b9407636a64404fe80dc

  • SHA1

    3ad5a836f385e02c8964291a0fe18e4ce44329c9

  • SHA256

    9fce4b57361b58f69ef29f481ef889629bb427f08da13d5c43a711d1f47dee0d

  • SHA512

    2216246db868c8ec04e1605e3069a642d76ecd0fe72bfa0a567283f13aa9d93101687c2d0431d878941aca06a739680a940cc43335a673ac33bc55872501d378

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXO:7wqd87VO

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      9fce4b57361b58f69ef29f481ef889629bb427f08da13d5c43a711d1f47dee0d

    • Size

      899KB

    • MD5

      f3ea069f77b9b9407636a64404fe80dc

    • SHA1

      3ad5a836f385e02c8964291a0fe18e4ce44329c9

    • SHA256

      9fce4b57361b58f69ef29f481ef889629bb427f08da13d5c43a711d1f47dee0d

    • SHA512

      2216246db868c8ec04e1605e3069a642d76ecd0fe72bfa0a567283f13aa9d93101687c2d0431d878941aca06a739680a940cc43335a673ac33bc55872501d378

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXO:7wqd87VO

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks