Overview

overview

10

Static

static

3

29b8c86109...18.dll

windows7-x64

10

29b8c86109...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    29b8c8610972caa058522ae6522a7631_JaffaCakes118

  • Size

    93KB

  • Sample

    240707-eq9sastbrq

  • MD5

    29b8c8610972caa058522ae6522a7631

  • SHA1

    ee695ee9fafca6a6a01bfcf8d87726e570f4a5cd

  • SHA256

    3c28b8b5128e44ecaa93defa6cdc6930a7fb0ed16aa46523511301632dc797a0

  • SHA512

    d53c7d59b231f4140df32de7332e2a6c181b42c8bcafe259e95af7eafce2e34c70a95da5a95ebc776e2c1385a88cf4cc855786d99546b807cfa508a3c887dfa5

  • SSDEEP

    768:8dn7CJoNNrc4xY0+VR6SANdDii45VJKgoIfaPpmQGtPENLms+y3CyMReAI3tEq:8d7s8No4xY0IqJhADeLmRy3CVehZ

Score
10/10
gh0stratrat

Malware Config

Targets

    • Target

      29b8c8610972caa058522ae6522a7631_JaffaCakes118

    • Size

      93KB

    • MD5

      29b8c8610972caa058522ae6522a7631

    • SHA1

      ee695ee9fafca6a6a01bfcf8d87726e570f4a5cd

    • SHA256

      3c28b8b5128e44ecaa93defa6cdc6930a7fb0ed16aa46523511301632dc797a0

    • SHA512

      d53c7d59b231f4140df32de7332e2a6c181b42c8bcafe259e95af7eafce2e34c70a95da5a95ebc776e2c1385a88cf4cc855786d99546b807cfa508a3c887dfa5

    • SSDEEP

      768:8dn7CJoNNrc4xY0+VR6SANdDii45VJKgoIfaPpmQGtPENLms+y3CyMReAI3tEq:8d7s8No4xY0IqJhADeLmRy3CVehZ

    Score
    10/10
    gh0stratrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks