General

  • Target

    d7c4467c414dc08ad2e23ed90e04b9b28182c5b28e04b882ce190d0042a35822

  • Size

    899KB

  • Sample

    240619-3jhx1axamd

  • MD5

    802ee6a231397bb9ff2359d88f2d4ff9

  • SHA1

    f667e98c586dd787cfa397f56e737980f7425392

  • SHA256

    d7c4467c414dc08ad2e23ed90e04b9b28182c5b28e04b882ce190d0042a35822

  • SHA512

    ec2a8454a80fd17e9f944ac29ad23dd1c8894461ff2ec8e187619194963afcbca80e700db0d79a04ad4fd520f72dec671f8984b6b85f9df7e9f9c1e01708b719

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX9:7wqd87V9

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      d7c4467c414dc08ad2e23ed90e04b9b28182c5b28e04b882ce190d0042a35822

    • Size

      899KB

    • MD5

      802ee6a231397bb9ff2359d88f2d4ff9

    • SHA1

      f667e98c586dd787cfa397f56e737980f7425392

    • SHA256

      d7c4467c414dc08ad2e23ed90e04b9b28182c5b28e04b882ce190d0042a35822

    • SHA512

      ec2a8454a80fd17e9f944ac29ad23dd1c8894461ff2ec8e187619194963afcbca80e700db0d79a04ad4fd520f72dec671f8984b6b85f9df7e9f9c1e01708b719

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX9:7wqd87V9

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks