General

  • Target

    fd21803031ec024060ef93ef2d7f77f005613e9da2b65e285c2ad684c12c2831

  • Size

    899KB

  • Sample

    240611-khbs7a1enl

  • MD5

    bf662af9c58c881384842de127ed7de2

  • SHA1

    0d540c19b2c0e007ca14decc8eec8349ad0e27fe

  • SHA256

    fd21803031ec024060ef93ef2d7f77f005613e9da2b65e285c2ad684c12c2831

  • SHA512

    264fa92681e9dcde3418f69c638811c3507d053a13c0e4dc381bacedd6f76b141df3782273973da6cc24152fcd9f6aa3abebbb89a7436673bb528039a070474c

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXj:7wqd87Vj

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      fd21803031ec024060ef93ef2d7f77f005613e9da2b65e285c2ad684c12c2831

    • Size

      899KB

    • MD5

      bf662af9c58c881384842de127ed7de2

    • SHA1

      0d540c19b2c0e007ca14decc8eec8349ad0e27fe

    • SHA256

      fd21803031ec024060ef93ef2d7f77f005613e9da2b65e285c2ad684c12c2831

    • SHA512

      264fa92681e9dcde3418f69c638811c3507d053a13c0e4dc381bacedd6f76b141df3782273973da6cc24152fcd9f6aa3abebbb89a7436673bb528039a070474c

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXj:7wqd87Vj

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks