General

  • Target

    73469f70ea42bd209d9ea060f27321ca0222b53f5e67169a71aef191e125a02d

  • Size

    50KB

  • Sample

    240623-1k2qdstblc

  • MD5

    ecfc11cb1c561e04dab7951e685f3cea

  • SHA1

    cfe0e5a083d05a9a4690de6b8fe9bdff42e1261a

  • SHA256

    73469f70ea42bd209d9ea060f27321ca0222b53f5e67169a71aef191e125a02d

  • SHA512

    5e96818006834b6972221cd442dc0bb43e9c3a3681d161bbad02b2f81ca03ebb6ea5b5bb63767ef52f70175a1dc8bf736f8c560e5d18d960fd3e662605b5df22

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o59JYH:W5ReWjTrW9rNPgYozJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      73469f70ea42bd209d9ea060f27321ca0222b53f5e67169a71aef191e125a02d

    • Size

      50KB

    • MD5

      ecfc11cb1c561e04dab7951e685f3cea

    • SHA1

      cfe0e5a083d05a9a4690de6b8fe9bdff42e1261a

    • SHA256

      73469f70ea42bd209d9ea060f27321ca0222b53f5e67169a71aef191e125a02d

    • SHA512

      5e96818006834b6972221cd442dc0bb43e9c3a3681d161bbad02b2f81ca03ebb6ea5b5bb63767ef52f70175a1dc8bf736f8c560e5d18d960fd3e662605b5df22

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o59JYH:W5ReWjTrW9rNPgYozJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks