Extracted

• • Target

    5a4ed084dc30f73f394a7157009b1c06c79684fd52f0b1c2c26b333644886217

  • Size

    899KB

  • MD5

    bccdb3f6cfb5e27e48d78c99957b5f2c

  • SHA1

    e0591a07489476dd50e6d27a8fcd4399d141a8ca

  • SHA256

    5a4ed084dc30f73f394a7157009b1c06c79684fd52f0b1c2c26b333644886217

  • SHA512

    20b4ae63003e5df810ad15f5792b5eafd35143672e443493dda9fab189436508447dd1e40aaec002bea9798a15976206c00842bd79caef47abeefedc40320737

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX4:7wqd87V4

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat
  behavioral1behavioral2