gh0strat | ef7d91c62d4e75f08ed0831ff1c1914ee4db4904fe2087e8dab79c9dc4bbf8d1 | Triage

Submit
Reports

Overview

overview

Static

static

789011095f...18.exe

windows7-x64

789011095f...18.exe

windows10-2004-x64

Sharing

General

Target

789011095fa394e93da6cc3c9d3c8878_JaffaCakes118
Size

20.2MB
Sample

240727-sb92eavcmr
MD5

789011095fa394e93da6cc3c9d3c8878
SHA1

d1b556de9dab3156a5f3cc1eef10a6f8888c8f9a
SHA256

ef7d91c62d4e75f08ed0831ff1c1914ee4db4904fe2087e8dab79c9dc4bbf8d1
SHA512

bfe8dbe918f510c8f73724f4fb5adcd3cdc9c2a4e36d23c54b0f8a73a6c9b0af1dd18b9014b2725008e243e5e5030a61e4f97d570718d228521bcca89f830e02
SSDEEP

6144:+bRwzHD8zL+M6llBBAIFMYyPaoi8ke/fdGwv:cRwbDKd01rScOHdGO

Score

10^/10

gh0strat discovery rat

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

789011095fa394e93da6cc3c9d3c8878_JaffaCakes118.exe

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

789011095fa394e93da6cc3c9d3c8878_JaffaCakes118.exe

Resource

win10v2004-20240709-en

gh0strat discovery rat

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  789011095fa394e93da6cc3c9d3c8878_JaffaCakes118
- Size
  
  20.2MB
- MD5
  
  789011095fa394e93da6cc3c9d3c8878
- SHA1
  
  d1b556de9dab3156a5f3cc1eef10a6f8888c8f9a
- SHA256
  
  ef7d91c62d4e75f08ed0831ff1c1914ee4db4904fe2087e8dab79c9dc4bbf8d1
- SHA512
  
  bfe8dbe918f510c8f73724f4fb5adcd3cdc9c2a4e36d23c54b0f8a73a6c9b0af1dd18b9014b2725008e243e5e5030a61e4f97d570718d228521bcca89f830e02
- SSDEEP
  
  6144:+bRwzHD8zL+M6llBBAIFMYyPaoi8ke/fdGwv:cRwbDKd01rScOHdGO
Score

10^/10

gh0strat rat discovery
- Gh0st RAT payload
- Gh0strat
  Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
  rat gh0strat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

gh0stratdiscoveryrat

© 2018-2025

Terms | Privacy