General

  • Target

    a364c1c4d1b92a07adb5a8cdef374622f91d1ee20b0bcdcc604f52e350855342

  • Size

    899KB

  • Sample

    240623-2nekpszanl

  • MD5

    503903c330a49a1182bc7a37e50dc31d

  • SHA1

    c57f2aec06f74c93932c106bdc6ccabae35d9cf7

  • SHA256

    a364c1c4d1b92a07adb5a8cdef374622f91d1ee20b0bcdcc604f52e350855342

  • SHA512

    bd0bb229d1e2e60b234b3e6078855f885f9a3852b8a56d8fa15f7c09caccee898f2768265bfd096a99ca010bf13cfa80743c29cfbcf8e54d15ef30404b1b564d

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      a364c1c4d1b92a07adb5a8cdef374622f91d1ee20b0bcdcc604f52e350855342

    • Size

      899KB

    • MD5

      503903c330a49a1182bc7a37e50dc31d

    • SHA1

      c57f2aec06f74c93932c106bdc6ccabae35d9cf7

    • SHA256

      a364c1c4d1b92a07adb5a8cdef374622f91d1ee20b0bcdcc604f52e350855342

    • SHA512

      bd0bb229d1e2e60b234b3e6078855f885f9a3852b8a56d8fa15f7c09caccee898f2768265bfd096a99ca010bf13cfa80743c29cfbcf8e54d15ef30404b1b564d

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks