General

  • Target

    5dd0c09e28f6a45952c9299f301ef8fae4b15bac0398b852b406dce6142a2885

  • Size

    899KB

  • Sample

    240623-1mvpvstclf

  • MD5

    c848e1086c939aa8c601785bc601bbf4

  • SHA1

    07916a72d53979fa58ced38526fc009096a2181d

  • SHA256

    5dd0c09e28f6a45952c9299f301ef8fae4b15bac0398b852b406dce6142a2885

  • SHA512

    35babb1b813e5799ecf707b5d5cf88ae3a51271a05751c5ac3b3ec65545ef636b9c3bed737dbe9305eee8c443c639bd71919c2d256321d9ce795613ac623ff40

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      5dd0c09e28f6a45952c9299f301ef8fae4b15bac0398b852b406dce6142a2885

    • Size

      899KB

    • MD5

      c848e1086c939aa8c601785bc601bbf4

    • SHA1

      07916a72d53979fa58ced38526fc009096a2181d

    • SHA256

      5dd0c09e28f6a45952c9299f301ef8fae4b15bac0398b852b406dce6142a2885

    • SHA512

      35babb1b813e5799ecf707b5d5cf88ae3a51271a05751c5ac3b3ec65545ef636b9c3bed737dbe9305eee8c443c639bd71919c2d256321d9ce795613ac623ff40

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks