General

  • Target

    4462a3c71e2447d0c9214f7e5f47239cb9295c7efec80f80fd8bbe99968965d8

  • Size

    50KB

  • Sample

    240612-av9wmswhla

  • MD5

    b767ce08a3d250ac28da28d2104007fe

  • SHA1

    a834f13d347254190ec5fcfeacb49a4102bf2ec6

  • SHA256

    4462a3c71e2447d0c9214f7e5f47239cb9295c7efec80f80fd8bbe99968965d8

  • SHA512

    e13b58778b77d9b93d4f03528cc0b6fb7d80c634ab194673a696aaa3250257aa66513cb73453d9603f3044b388a5a175f0a1e4e80bc278d4aeb0d4061d8292d1

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5HJYH:W5ReWjTrW9rNPgYoJJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      4462a3c71e2447d0c9214f7e5f47239cb9295c7efec80f80fd8bbe99968965d8

    • Size

      50KB

    • MD5

      b767ce08a3d250ac28da28d2104007fe

    • SHA1

      a834f13d347254190ec5fcfeacb49a4102bf2ec6

    • SHA256

      4462a3c71e2447d0c9214f7e5f47239cb9295c7efec80f80fd8bbe99968965d8

    • SHA512

      e13b58778b77d9b93d4f03528cc0b6fb7d80c634ab194673a696aaa3250257aa66513cb73453d9603f3044b388a5a175f0a1e4e80bc278d4aeb0d4061d8292d1

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5HJYH:W5ReWjTrW9rNPgYoJJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks