General

  • Target

    ff8922763e282c252671441b5df4d1d2c72fb2ea696fd68795e1a7447cf20c59

  • Size

    50KB

  • Sample

    240623-2p62cazbnj

  • MD5

    8e10e07d5cf3095ff400900fbbef066f

  • SHA1

    b2936524777fccbddc36ce0debc36939bdf9f80b

  • SHA256

    ff8922763e282c252671441b5df4d1d2c72fb2ea696fd68795e1a7447cf20c59

  • SHA512

    f6da6aa6488544b0cf75061470f215ce026c36c214c6fcf020de8b10acd182ab48c70727f0b890913c2086f2d7d9b3a7f6f3e8ed3c5e8b2fa67f1c7339c9a244

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5JJYH:W5ReWjTrW9rNPgYojJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      ff8922763e282c252671441b5df4d1d2c72fb2ea696fd68795e1a7447cf20c59

    • Size

      50KB

    • MD5

      8e10e07d5cf3095ff400900fbbef066f

    • SHA1

      b2936524777fccbddc36ce0debc36939bdf9f80b

    • SHA256

      ff8922763e282c252671441b5df4d1d2c72fb2ea696fd68795e1a7447cf20c59

    • SHA512

      f6da6aa6488544b0cf75061470f215ce026c36c214c6fcf020de8b10acd182ab48c70727f0b890913c2086f2d7d9b3a7f6f3e8ed3c5e8b2fa67f1c7339c9a244

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5JJYH:W5ReWjTrW9rNPgYojJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks