Overview

overview

10

Static

static

10

07bf9a7be8...18.dll

windows7-x64

10

07bf9a7be8...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07bf9a7be821ba1258bab3e2f13cfa89_JaffaCakes118

  • Size

    124KB

  • Sample

    240624-ll4ttayglq

  • MD5

    07bf9a7be821ba1258bab3e2f13cfa89

  • SHA1

    6e9a38f293c2ac7f03e44dbb007e1445acde5e84

  • SHA256

    7812cb15f2d9981f7396e2378e056d2174094264a1a75e0540c5559f836fe24f

  • SHA512

    b42187373328a89660e9b50b61127910559d7ba353fdfeb0669d260245fc04f9de0a9fce2e013f21b0d83f2ab225971218b43d9ffa908f6777101eb86c7cba79

  • SSDEEP

    3072:R1p8vWLBC1KGY1ugy6ESLpO8SuHieQHs2k:R1p8CBc5yhpf/HRl

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      07bf9a7be821ba1258bab3e2f13cfa89_JaffaCakes118

    • Size

      124KB

    • MD5

      07bf9a7be821ba1258bab3e2f13cfa89

    • SHA1

      6e9a38f293c2ac7f03e44dbb007e1445acde5e84

    • SHA256

      7812cb15f2d9981f7396e2378e056d2174094264a1a75e0540c5559f836fe24f

    • SHA512

      b42187373328a89660e9b50b61127910559d7ba353fdfeb0669d260245fc04f9de0a9fce2e013f21b0d83f2ab225971218b43d9ffa908f6777101eb86c7cba79

    • SSDEEP

      3072:R1p8vWLBC1KGY1ugy6ESLpO8SuHieQHs2k:R1p8CBc5yhpf/HRl

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks