Extracted

• • Target

    853899c4e1c965f0746aca7948ec8ffc4dc7afc1976deef40479a95c258860c9.exe

  • Size

    899KB

  • MD5

    6ad7b02c6d34b669c0a714f970615bac

  • SHA1

    a70782e99c83e3df5cef6aa0dc6eb30eef7c5443

  • SHA256

    853899c4e1c965f0746aca7948ec8ffc4dc7afc1976deef40479a95c258860c9

  • SHA512

    413979b1098423c4612ad5ec8ecb3ed210f17b928210b32e8cd407d65bf893b4878dd7a54c15240b8303f79b6e2460427ad874cd4eb588ced91ed2c85ff1f666

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

  Score

  10^/10

  gh0stratrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat
  behavioral1behavioral2