General

  • Target

    29875f440148056978597cf09630a3fcc200cd00b730ced9c2110c3cbfda5735

  • Size

    899KB

  • Sample

    240612-avwn1swhka

  • MD5

    55d3c76126733ae597cb9ab180cfe4b6

  • SHA1

    56afc661e5647327477e0852eb8e4180aeb926c9

  • SHA256

    29875f440148056978597cf09630a3fcc200cd00b730ced9c2110c3cbfda5735

  • SHA512

    982d3f09a950bccebc00e7170f9c4148a863cd5927bbf4171210b48fffa4a6607693c8b5c62c429edd137a0ccbca1566a3d065bb4cbcf684150fbb95e8fc000a

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXH:7wqd87VH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      29875f440148056978597cf09630a3fcc200cd00b730ced9c2110c3cbfda5735

    • Size

      899KB

    • MD5

      55d3c76126733ae597cb9ab180cfe4b6

    • SHA1

      56afc661e5647327477e0852eb8e4180aeb926c9

    • SHA256

      29875f440148056978597cf09630a3fcc200cd00b730ced9c2110c3cbfda5735

    • SHA512

      982d3f09a950bccebc00e7170f9c4148a863cd5927bbf4171210b48fffa4a6607693c8b5c62c429edd137a0ccbca1566a3d065bb4cbcf684150fbb95e8fc000a

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXH:7wqd87VH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks