Overview

overview

10

Static

static

10

719948fcc7...18.dll

windows7-x64

10

719948fcc7...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    719948fcc7b5a94fa5385af6334566bc_JaffaCakes118

  • Size

    148KB

  • Sample

    240725-2yqeystcrd

  • MD5

    719948fcc7b5a94fa5385af6334566bc

  • SHA1

    aed4d9e87a8c9e96d5ddb3c98d55e0120e46c697

  • SHA256

    9208fe6d08d42a609812665848dd4bb1629c801841ab12e53541d8ba6a17125a

  • SHA512

    6004b4ec80fa1d3300c52f6aa8bb5dddf1054b07b1b53e4d2d6f51be2b5bcd47023aab939c2737fca76c94b4a1d9fac2b12cc140d1e7a4513037651025901518

  • SSDEEP

    3072:RQ4eua3OTgH7s/SM25AJ9QT8b2giYTBftZGIQhiSMhKzeE:Ded3OQoaMTojYTBlZGI20hS/

Score
10/10
gh0stratdiscoveryrat

Malware Config

Targets

    • Target

      719948fcc7b5a94fa5385af6334566bc_JaffaCakes118

    • Size

      148KB

    • MD5

      719948fcc7b5a94fa5385af6334566bc

    • SHA1

      aed4d9e87a8c9e96d5ddb3c98d55e0120e46c697

    • SHA256

      9208fe6d08d42a609812665848dd4bb1629c801841ab12e53541d8ba6a17125a

    • SHA512

      6004b4ec80fa1d3300c52f6aa8bb5dddf1054b07b1b53e4d2d6f51be2b5bcd47023aab939c2737fca76c94b4a1d9fac2b12cc140d1e7a4513037651025901518

    • SSDEEP

      3072:RQ4eua3OTgH7s/SM25AJ9QT8b2giYTBftZGIQhiSMhKzeE:Ded3OQoaMTojYTBlZGI20hS/

    Score
    10/10
    gh0stratdiscoveryrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks