General

  • Target

    286639db80f4f2b19a9dd6c0ee606d152140bc33712446a0115b4f1c1674902e

  • Size

    50KB

  • Sample

    240611-3jq9dawbnl

  • MD5

    d105ec2e914c1be08fcf9ada306f54e5

  • SHA1

    1e53c48aa53139663d535d3551fdf6c925fbc099

  • SHA256

    286639db80f4f2b19a9dd6c0ee606d152140bc33712446a0115b4f1c1674902e

  • SHA512

    d8ec7ded75eeb5a23adf14ca4c35fa8f38af972afa61bcdd5e8226b68831e92c41b1f94e5bfbeab81ee260833d4259535d0a54c68df5228e488f8d96d35c8786

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5kJYH:W5ReWjTrW9rNPgYoWJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      286639db80f4f2b19a9dd6c0ee606d152140bc33712446a0115b4f1c1674902e

    • Size

      50KB

    • MD5

      d105ec2e914c1be08fcf9ada306f54e5

    • SHA1

      1e53c48aa53139663d535d3551fdf6c925fbc099

    • SHA256

      286639db80f4f2b19a9dd6c0ee606d152140bc33712446a0115b4f1c1674902e

    • SHA512

      d8ec7ded75eeb5a23adf14ca4c35fa8f38af972afa61bcdd5e8226b68831e92c41b1f94e5bfbeab81ee260833d4259535d0a54c68df5228e488f8d96d35c8786

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5kJYH:W5ReWjTrW9rNPgYoWJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks