General

  • Target

    05d895651f6f57563fa7c5869aa0a40d_JaffaCakes118

  • Size

    153KB

  • Sample

    240623-k8s56a1clp

  • MD5

    05d895651f6f57563fa7c5869aa0a40d

  • SHA1

    37212b22c38e4288a11b94a362b586dac208c375

  • SHA256

    6c21ea0c5a49e7fc2edb4c01c9d7aef9cba9d96c46b910d8fe33aecd28c69ebd

  • SHA512

    eeb7864a1d9d525c40625904f0a45858c5954fd90f0910229dd335473f94cd0995870f8b000717934476896e2e748cf9c93e98bd0f28889ed1103784b5e7a853

  • SSDEEP

    3072:RgxTUs6wbhvtHEnXsg8620w/KSDv9dTBftFctbmOeQ:gTT/1tHE8grSVdTBlFcMY

Score
10/10

Malware Config

Targets

    • Target

      05d895651f6f57563fa7c5869aa0a40d_JaffaCakes118

    • Size

      153KB

    • MD5

      05d895651f6f57563fa7c5869aa0a40d

    • SHA1

      37212b22c38e4288a11b94a362b586dac208c375

    • SHA256

      6c21ea0c5a49e7fc2edb4c01c9d7aef9cba9d96c46b910d8fe33aecd28c69ebd

    • SHA512

      eeb7864a1d9d525c40625904f0a45858c5954fd90f0910229dd335473f94cd0995870f8b000717934476896e2e748cf9c93e98bd0f28889ed1103784b5e7a853

    • SSDEEP

      3072:RgxTUs6wbhvtHEnXsg8620w/KSDv9dTBftFctbmOeQ:gTT/1tHE8grSVdTBlFcMY

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks