General

  • Target

    05caa58dbb6fa331b64a8a3479bbc574_JaffaCakes118

  • Size

    3.7MB

  • Sample

    240623-kwxmtawgke

  • MD5

    05caa58dbb6fa331b64a8a3479bbc574

  • SHA1

    8c0a67a92c4fb3f1a119e42b0448b1eaaaa3a734

  • SHA256

    453ae4cb09cb460cd4f78c607cae9cfc1cd4ca85ef307fa51bde98a7b164c3e7

  • SHA512

    74eaf2bea80cd2f671dcb26c16d111f40b6c3f58b6dbaaa96cdc6c3c8fc443596b41fb21010f35209e5642f996f843975e456f0ab5cdfc395d3843dc4a8b366d

  • SSDEEP

    12288:1HD2DKslHwgggggggggggggggggggggggggggggggggggggggggggggggggggggq:1mKslH6

Score
10/10

Malware Config

Targets

    • Target

      05caa58dbb6fa331b64a8a3479bbc574_JaffaCakes118

    • Size

      3.7MB

    • MD5

      05caa58dbb6fa331b64a8a3479bbc574

    • SHA1

      8c0a67a92c4fb3f1a119e42b0448b1eaaaa3a734

    • SHA256

      453ae4cb09cb460cd4f78c607cae9cfc1cd4ca85ef307fa51bde98a7b164c3e7

    • SHA512

      74eaf2bea80cd2f671dcb26c16d111f40b6c3f58b6dbaaa96cdc6c3c8fc443596b41fb21010f35209e5642f996f843975e456f0ab5cdfc395d3843dc4a8b366d

    • SSDEEP

      12288:1HD2DKslHwgggggggggggggggggggggggggggggggggggggggggggggggggggggq:1mKslH6

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks