General

  • Target

    075996544c78aa02fd5cbbc9e6fa2918ce27e120d1da77a5ece9ae122e87e060

  • Size

    899KB

  • Sample

    241029-zgrkkszbkc

  • MD5

    51958b14db7394f12e57c23713da58c7

  • SHA1

    64055467509ea8f02489c2479521ff212a676188

  • SHA256

    075996544c78aa02fd5cbbc9e6fa2918ce27e120d1da77a5ece9ae122e87e060

  • SHA512

    5732b5a89200c238c760bd095b0e669993a82614dd660519aadc27e5bb5e0e4b5ecac7725127ed4e32337b13d33d460af439bcc368a49bb7adac8388eb10429a

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXJ:7wqd87VJ

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      075996544c78aa02fd5cbbc9e6fa2918ce27e120d1da77a5ece9ae122e87e060

    • Size

      899KB

    • MD5

      51958b14db7394f12e57c23713da58c7

    • SHA1

      64055467509ea8f02489c2479521ff212a676188

    • SHA256

      075996544c78aa02fd5cbbc9e6fa2918ce27e120d1da77a5ece9ae122e87e060

    • SHA512

      5732b5a89200c238c760bd095b0e669993a82614dd660519aadc27e5bb5e0e4b5ecac7725127ed4e32337b13d33d460af439bcc368a49bb7adac8388eb10429a

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXJ:7wqd87VJ

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

MITRE ATT&CK Enterprise v15

Tasks