Overview

overview

10

Static

static

10

27a3155258...18.dll

windows7-x64

10

27a3155258...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    27a3155258acb92ce001717ef9324b9f_JaffaCakes118

  • Size

    152KB

  • Sample

    240706-hqpnxascjf

  • MD5

    27a3155258acb92ce001717ef9324b9f

  • SHA1

    416334e279e229e00d675f6f67462dc254e32a97

  • SHA256

    7d4ffd065108f626fa16e8d4d567313f44028cb18315196176122df9a1018610

  • SHA512

    610dd51ff27c3652ccae37fea46492216fe79c0fad924590ee3a3d060f03b5214a5500651296fa6d33ebe4319ae502183aee282157f116cefca58481fee67429

  • SSDEEP

    3072:jYJCiW0h75Henw/P3lp8hiYZxTBft6UeGp6KQQq:eCoj+novlpQbZxTBl6UwKa

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      27a3155258acb92ce001717ef9324b9f_JaffaCakes118

    • Size

      152KB

    • MD5

      27a3155258acb92ce001717ef9324b9f

    • SHA1

      416334e279e229e00d675f6f67462dc254e32a97

    • SHA256

      7d4ffd065108f626fa16e8d4d567313f44028cb18315196176122df9a1018610

    • SHA512

      610dd51ff27c3652ccae37fea46492216fe79c0fad924590ee3a3d060f03b5214a5500651296fa6d33ebe4319ae502183aee282157f116cefca58481fee67429

    • SSDEEP

      3072:jYJCiW0h75Henw/P3lp8hiYZxTBft6UeGp6KQQq:eCoj+novlpQbZxTBl6UwKa

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks