Overview

overview

10

Static

static

10

0baed4be0e...18.exe

windows7-x64

10

0baed4be0e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0baed4be0e4aa11c4068705eb8fdf47c_JaffaCakes118

  • Size

    134KB

  • Sample

    241002-vjelks1bpf

  • MD5

    0baed4be0e4aa11c4068705eb8fdf47c

  • SHA1

    b4dd67e6c9e537297b955dd5ee827f7fa06ed2c7

  • SHA256

    b703ab9a40b314b3092e95f13ea53d3ece30aecb2b96bb8a8a7964d27b4f44ff

  • SHA512

    fd61cbc1504a949b8a49a273ce038f061c99713f66ef10488259da53b643238692705b52866f8a04a3ed6531825a0c02ea6aeb44d3aa5d71b18ea13d82e98642

  • SSDEEP

    3072:mFH1lqfM4TYZesGO4Qg/0ilm37GBYfiA+SIML+HsZwUr:m3lqfTY4Yjg/0VqY6hMLruE

Score
10/10
gh0stratdiscoveryrat

Malware Config

Targets

    • Target

      0baed4be0e4aa11c4068705eb8fdf47c_JaffaCakes118

    • Size

      134KB

    • MD5

      0baed4be0e4aa11c4068705eb8fdf47c

    • SHA1

      b4dd67e6c9e537297b955dd5ee827f7fa06ed2c7

    • SHA256

      b703ab9a40b314b3092e95f13ea53d3ece30aecb2b96bb8a8a7964d27b4f44ff

    • SHA512

      fd61cbc1504a949b8a49a273ce038f061c99713f66ef10488259da53b643238692705b52866f8a04a3ed6531825a0c02ea6aeb44d3aa5d71b18ea13d82e98642

    • SSDEEP

      3072:mFH1lqfM4TYZesGO4Qg/0ilm37GBYfiA+SIML+HsZwUr:m3lqfTY4Yjg/0VqY6hMLruE

    Score
    10/10
    gh0stratdiscoveryrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks