Overview

overview

10

Static

static

10

c78d03845d...18.dll

windows7-x64

10

c78d03845d...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c78d03845d705fa7d7f8992e7859fbcb_JaffaCakes118

  • Size

    102KB

  • Sample

    240828-yq9l3stard

  • MD5

    c78d03845d705fa7d7f8992e7859fbcb

  • SHA1

    0e732c265481c70d4295c5274afb6364048372b6

  • SHA256

    6f3750e1e17879d56d7b4e4f8f68059db10dc9023ce4fbff5e201793c6237799

  • SHA512

    f89547320cf423446a88654a580bcd90fe68aa63246c9639ad68af1dcae444d855f3f54ae057b418db195382afd889ecd5953220af3ca14913f6521da84b5a1b

  • SSDEEP

    3072:LyvcWBDs/1tle6IPtWheqXxxQw3KUxT95hNJOm:2vckDszVkWggmw3KUxx3NJr

Score
10/10
gh0stratdiscoveryrat

Malware Config

Targets

    • Target

      c78d03845d705fa7d7f8992e7859fbcb_JaffaCakes118

    • Size

      102KB

    • MD5

      c78d03845d705fa7d7f8992e7859fbcb

    • SHA1

      0e732c265481c70d4295c5274afb6364048372b6

    • SHA256

      6f3750e1e17879d56d7b4e4f8f68059db10dc9023ce4fbff5e201793c6237799

    • SHA512

      f89547320cf423446a88654a580bcd90fe68aa63246c9639ad68af1dcae444d855f3f54ae057b418db195382afd889ecd5953220af3ca14913f6521da84b5a1b

    • SSDEEP

      3072:LyvcWBDs/1tle6IPtWheqXxxQw3KUxT95hNJOm:2vckDszVkWggmw3KUxx3NJr

    Score
    10/10
    gh0stratdiscoveryrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks