Overview

overview

10

Static

static

3

066f029cd6...c3.exe

windows7-x64

10

066f029cd6...c3.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    066f029cd648e8b1e97c21ce03c2dc9a86488e4219cfb0f82513d44a06133fc3

  • Size

    132KB

  • Sample

    240818-hvg5mavbrq

  • MD5

    2d187802e08e8da344eeb7863aeb53d6

  • SHA1

    828010a1d7ced213b2b3a6afd664793d1b52cb9d

  • SHA256

    066f029cd648e8b1e97c21ce03c2dc9a86488e4219cfb0f82513d44a06133fc3

  • SHA512

    03a7e9062dba7616e034c52e33d16df379e0508dfdbee57df60e1e3bc5285d27ce47bcc396d3c4249e177e6f08746bde8d0343dab7a07ef8a344b20c8e3a1529

  • SSDEEP

    3072:EP4y2VQ7e2fxIE2wbw33jd33imsoNl/3VG:Ej2VQS2fxIrwbw33p33imXRF

Score
10/10
gh0stratdiscoveryrat

Malware Config

Targets

    • Target

      066f029cd648e8b1e97c21ce03c2dc9a86488e4219cfb0f82513d44a06133fc3

    • Size

      132KB

    • MD5

      2d187802e08e8da344eeb7863aeb53d6

    • SHA1

      828010a1d7ced213b2b3a6afd664793d1b52cb9d

    • SHA256

      066f029cd648e8b1e97c21ce03c2dc9a86488e4219cfb0f82513d44a06133fc3

    • SHA512

      03a7e9062dba7616e034c52e33d16df379e0508dfdbee57df60e1e3bc5285d27ce47bcc396d3c4249e177e6f08746bde8d0343dab7a07ef8a344b20c8e3a1529

    • SSDEEP

      3072:EP4y2VQ7e2fxIE2wbw33jd33imsoNl/3VG:Ej2VQS2fxIrwbw33p33imXRF

    Score
    10/10
    gh0stratdiscoveryrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks