General

  • Target

    42f9b88761bb47c02a99279cf9e5ef9f80e443f68ed180f7746ebb5621c66d38

  • Size

    50KB

  • Sample

    240605-as62zage41

  • MD5

    23da7fb4b1c8544344b07cc1701af102

  • SHA1

    d9c8cf225c01f5d0fd3a608adf8f80b4e78d3b87

  • SHA256

    42f9b88761bb47c02a99279cf9e5ef9f80e443f68ed180f7746ebb5621c66d38

  • SHA512

    88947bb39aa637818013ba0040ba1a74421a2b6c15542ab18be6176e2a385fb3806374c5f8232b4a78da14bdbbdd668a93c3ba5124e0fe157b9e812da4ca7da0

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5MJYH:W5ReWjTrW9rNPgYoCJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      42f9b88761bb47c02a99279cf9e5ef9f80e443f68ed180f7746ebb5621c66d38

    • Size

      50KB

    • MD5

      23da7fb4b1c8544344b07cc1701af102

    • SHA1

      d9c8cf225c01f5d0fd3a608adf8f80b4e78d3b87

    • SHA256

      42f9b88761bb47c02a99279cf9e5ef9f80e443f68ed180f7746ebb5621c66d38

    • SHA512

      88947bb39aa637818013ba0040ba1a74421a2b6c15542ab18be6176e2a385fb3806374c5f8232b4a78da14bdbbdd668a93c3ba5124e0fe157b9e812da4ca7da0

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5MJYH:W5ReWjTrW9rNPgYoCJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks