General

  • Target

    06b93043911b623d79d5774607c406a0_JaffaCakes118

  • Size

    114KB

  • Sample

    240623-sl1kqawajd

  • MD5

    06b93043911b623d79d5774607c406a0

  • SHA1

    e3bc99d692a2e1caf145db8886eae685f65e988c

  • SHA256

    bfa1275a58869e1708d1347bd2f9fc35f2b8c9fb18c2ee021eb35ec2b42d4a04

  • SHA512

    aaa6aba640ae6e9e59752515e2c951b3f3c94cb0a8d86f9cf9d7b6cdc5a32e81c54ea025238f962a227a057391b3d9c89a6ffffcbd16431bc0c7cd8413620927

  • SSDEEP

    3072:sjHWdGVxibiFahBQizwucbXBIkR5wDG4:s/eb+Kk/bXBIkXwD

Score
10/10

Malware Config

Targets

    • Target

      06b93043911b623d79d5774607c406a0_JaffaCakes118

    • Size

      114KB

    • MD5

      06b93043911b623d79d5774607c406a0

    • SHA1

      e3bc99d692a2e1caf145db8886eae685f65e988c

    • SHA256

      bfa1275a58869e1708d1347bd2f9fc35f2b8c9fb18c2ee021eb35ec2b42d4a04

    • SHA512

      aaa6aba640ae6e9e59752515e2c951b3f3c94cb0a8d86f9cf9d7b6cdc5a32e81c54ea025238f962a227a057391b3d9c89a6ffffcbd16431bc0c7cd8413620927

    • SSDEEP

      3072:sjHWdGVxibiFahBQizwucbXBIkR5wDG4:s/eb+Kk/bXBIkXwD

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks