General

  • Target

    0041c46476c612c89bbdc9890f9dedb6_JaffaCakes118

  • Size

    127KB

  • Sample

    240623-zlplsa1dng

  • MD5

    0041c46476c612c89bbdc9890f9dedb6

  • SHA1

    58be3eaf1192e7452e2863d42ce79afd34339079

  • SHA256

    d908cc20842baaa45125e4eb693f75b196874897390fa07659e40d69c101008d

  • SHA512

    7499fae893c085403e7c67ccc90b4d03b98e4732069de9da2b357c39fa7f6ab2032233876a4e300b2baced731a644c06f3bab2eb599f3b54513c3a1d397f9b71

  • SSDEEP

    3072:sByYgf6+4uyv/gCBw8EcnQw3n0cDKteo6l:Oypf6+OwC67Vw3n0ceeoQ

Score
10/10

Malware Config

Targets

    • Target

      0041c46476c612c89bbdc9890f9dedb6_JaffaCakes118

    • Size

      127KB

    • MD5

      0041c46476c612c89bbdc9890f9dedb6

    • SHA1

      58be3eaf1192e7452e2863d42ce79afd34339079

    • SHA256

      d908cc20842baaa45125e4eb693f75b196874897390fa07659e40d69c101008d

    • SHA512

      7499fae893c085403e7c67ccc90b4d03b98e4732069de9da2b357c39fa7f6ab2032233876a4e300b2baced731a644c06f3bab2eb599f3b54513c3a1d397f9b71

    • SSDEEP

      3072:sByYgf6+4uyv/gCBw8EcnQw3n0cDKteo6l:Oypf6+OwC67Vw3n0ceeoQ

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks