General

  • Target

    cdca55e75c02bf82dce6001ebde9b91f4683a7aea6cc3780337215b0b7a758ea

  • Size

    899KB

  • Sample

    240611-ppaxpaxdlj

  • MD5

    ec4aaf2ce9836035c95528b79005d47b

  • SHA1

    f427f43d0d7e172f53c583eb73060d1f6fbf867e

  • SHA256

    cdca55e75c02bf82dce6001ebde9b91f4683a7aea6cc3780337215b0b7a758ea

  • SHA512

    3eef89354fda9c68bceb73f597138410b57907bbb79432c9a78a5805d324d510da925f2c8159c2764e2a09b9b86cb4fba14e615a374abfa9b35ed9a1aa523589

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXz:7wqd87Vz

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      cdca55e75c02bf82dce6001ebde9b91f4683a7aea6cc3780337215b0b7a758ea

    • Size

      899KB

    • MD5

      ec4aaf2ce9836035c95528b79005d47b

    • SHA1

      f427f43d0d7e172f53c583eb73060d1f6fbf867e

    • SHA256

      cdca55e75c02bf82dce6001ebde9b91f4683a7aea6cc3780337215b0b7a758ea

    • SHA512

      3eef89354fda9c68bceb73f597138410b57907bbb79432c9a78a5805d324d510da925f2c8159c2764e2a09b9b86cb4fba14e615a374abfa9b35ed9a1aa523589

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXz:7wqd87Vz

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks