Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7c7f72675643156eb0947c5b2d8969684b09b88ca87521b11586e0f5c85c31da

  • Size

    899KB

  • Sample

    240624-2wjjmawfqg

  • MD5

    482070ab8df3d041f36f1bb93f6bf3c4

  • SHA1

    150745d4606f46bbe7e57de6f05beeb77ca75ec9

  • SHA256

    7c7f72675643156eb0947c5b2d8969684b09b88ca87521b11586e0f5c85c31da

  • SHA512

    0a06001823477324ecdd5169e41ac35472f4930a2ee41d31dc5183e1c45bca90abaf843ed7143aad37c7bd7020726042705f445fb56daf9aab2ab069efe49c6b

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXO:7wqd87VO

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      7c7f72675643156eb0947c5b2d8969684b09b88ca87521b11586e0f5c85c31da

    • Size

      899KB

    • MD5

      482070ab8df3d041f36f1bb93f6bf3c4

    • SHA1

      150745d4606f46bbe7e57de6f05beeb77ca75ec9

    • SHA256

      7c7f72675643156eb0947c5b2d8969684b09b88ca87521b11586e0f5c85c31da

    • SHA512

      0a06001823477324ecdd5169e41ac35472f4930a2ee41d31dc5183e1c45bca90abaf843ed7143aad37c7bd7020726042705f445fb56daf9aab2ab069efe49c6b

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXO:7wqd87VO

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks