Overview

overview

10

Static

static

10

b4bfc79f6c...18.exe

windows7-x64

10

b4bfc79f6c...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b4bfc79f6c03aa3024378a83ef422372_JaffaCakes118

  • Size

    113KB

  • Sample

    240821-x81lfswflf

  • MD5

    b4bfc79f6c03aa3024378a83ef422372

  • SHA1

    e77abdb8353d0a5a8802a39e161f790662630b0b

  • SHA256

    2ec1b7ef06ed89d9d1cf34a1f0b036f9c9b74106e90fe568ef9a702620dabb03

  • SHA512

    31525c39ecddb07c389fb3b7ab5d39dd99aea1109383f6ac7f3d4f48548827921f73a1d325bf13621359bd6165245f1e2f9f0be0eb5131c233f31770f6a48566

  • SSDEEP

    3072:lc1J/SyG8/qD0QLcvlyocKVy8i+q+PTw3UrA64MLW:e3SyGJD0ZPLy6jbw38A6HS

Score
10/10
gh0stratdiscoveryrat

Malware Config

Targets

    • Target

      b4bfc79f6c03aa3024378a83ef422372_JaffaCakes118

    • Size

      113KB

    • MD5

      b4bfc79f6c03aa3024378a83ef422372

    • SHA1

      e77abdb8353d0a5a8802a39e161f790662630b0b

    • SHA256

      2ec1b7ef06ed89d9d1cf34a1f0b036f9c9b74106e90fe568ef9a702620dabb03

    • SHA512

      31525c39ecddb07c389fb3b7ab5d39dd99aea1109383f6ac7f3d4f48548827921f73a1d325bf13621359bd6165245f1e2f9f0be0eb5131c233f31770f6a48566

    • SSDEEP

      3072:lc1J/SyG8/qD0QLcvlyocKVy8i+q+PTw3UrA64MLW:e3SyGJD0ZPLy6jbw38A6HS

    Score
    10/10
    gh0stratratdiscovery

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks