General

  • Target

    d959cbe18440cc4e3fae45bdf7ea44b90d74d8250c284ac32731d4b9c854836e

  • Size

    124KB

  • Sample

    241030-f44nwaymdl

  • MD5

    7a1c802b608398a3faf81a8f6d632c32

  • SHA1

    98aad4a7b94a15e9ebb32d03bb7849e044042575

  • SHA256

    d959cbe18440cc4e3fae45bdf7ea44b90d74d8250c284ac32731d4b9c854836e

  • SHA512

    532fece83cde7466db98217016fbe40465bec11505e621a6823ca8f26cee72cceb1d6266d507a45e74105a320b07ca646d63c419b56a254df6f4a55a09b4b1af

  • SSDEEP

    3072:Bzk9z4Uh+yQAbAbu7NWtMpebimeN7kgMwxi/:uDTQAbbMbxg7kVwx

Score
10/10

Malware Config

Targets

    • Target

      d959cbe18440cc4e3fae45bdf7ea44b90d74d8250c284ac32731d4b9c854836e

    • Size

      124KB

    • MD5

      7a1c802b608398a3faf81a8f6d632c32

    • SHA1

      98aad4a7b94a15e9ebb32d03bb7849e044042575

    • SHA256

      d959cbe18440cc4e3fae45bdf7ea44b90d74d8250c284ac32731d4b9c854836e

    • SHA512

      532fece83cde7466db98217016fbe40465bec11505e621a6823ca8f26cee72cceb1d6266d507a45e74105a320b07ca646d63c419b56a254df6f4a55a09b4b1af

    • SSDEEP

      3072:Bzk9z4Uh+yQAbAbu7NWtMpebimeN7kgMwxi/:uDTQAbbMbxg7kVwx

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks