Extracted

• • Target

    21746564fc2e1e503e9be618aec7c7148eba45e533cc23e8c95a0350af53a241

  • Size

    51KB

  • MD5

    cd383a3f2abceda0c890c86a2c82fb6c

  • SHA1

    29e52058bcd3c2404474646e245ff502b9befd1a

  • SHA256

    21746564fc2e1e503e9be618aec7c7148eba45e533cc23e8c95a0350af53a241

  • SHA512

    da9e989b064233da316391124b2d224f3f9c4fe139a0d7b6fd757b3fc914cbfbdd313e5e71765aeed42792386b9df698621f52be70885c57bb594c51c7c29aff

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLbJYH5:1dWubF3n9S91BF3fboHJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat
  behavioral1behavioral2