General

  • Target

    81355464e53a9a6fbeb4c7d934cfe995b2356a618d32328adf35fc2e02438e71

  • Size

    899KB

  • Sample

    240623-1ld1qaxapr

  • MD5

    b1fe3654ee627a28989257699a421530

  • SHA1

    2600794956b17c7547f4f6e0783de4f828441b31

  • SHA256

    81355464e53a9a6fbeb4c7d934cfe995b2356a618d32328adf35fc2e02438e71

  • SHA512

    4a8ea930f8c27d7161ddf2f72e9c884adea43a10156b17b9356a738c94bd58b1b5c205fae531b2e8c2d3be336162652bd0e77af7f918bfe6840dd54dea6cc23c

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXa:7wqd87Va

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      81355464e53a9a6fbeb4c7d934cfe995b2356a618d32328adf35fc2e02438e71

    • Size

      899KB

    • MD5

      b1fe3654ee627a28989257699a421530

    • SHA1

      2600794956b17c7547f4f6e0783de4f828441b31

    • SHA256

      81355464e53a9a6fbeb4c7d934cfe995b2356a618d32328adf35fc2e02438e71

    • SHA512

      4a8ea930f8c27d7161ddf2f72e9c884adea43a10156b17b9356a738c94bd58b1b5c205fae531b2e8c2d3be336162652bd0e77af7f918bfe6840dd54dea6cc23c

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXa:7wqd87Va

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks