General

  • Target

    97d716ea2e2ddf383f9fdfcb4342ea4f6971aeb80018d06176474c26d5aabc46

  • Size

    899KB

  • Sample

    240611-khceqa1enn

  • MD5

    380be77c64f5dd97a8cdaeac614e8428

  • SHA1

    4e9a78ee7bd558fc858a961e79617e19069104a9

  • SHA256

    97d716ea2e2ddf383f9fdfcb4342ea4f6971aeb80018d06176474c26d5aabc46

  • SHA512

    7ed869fa5b722b982df580824d00719554c100759ac1c0e7102e8bb6eee34175df668a228fb5a30d5dc746a7db65b5377940ff4db8296e8ecdf377de4b4b048b

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXv:7wqd87Vv

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      97d716ea2e2ddf383f9fdfcb4342ea4f6971aeb80018d06176474c26d5aabc46

    • Size

      899KB

    • MD5

      380be77c64f5dd97a8cdaeac614e8428

    • SHA1

      4e9a78ee7bd558fc858a961e79617e19069104a9

    • SHA256

      97d716ea2e2ddf383f9fdfcb4342ea4f6971aeb80018d06176474c26d5aabc46

    • SHA512

      7ed869fa5b722b982df580824d00719554c100759ac1c0e7102e8bb6eee34175df668a228fb5a30d5dc746a7db65b5377940ff4db8296e8ecdf377de4b4b048b

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXv:7wqd87Vv

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks