General

  • Target

    80c9352e6ccabb87ee00ac284ceee480_JaffaCakes118

  • Size

    5.0MB

  • Sample

    241031-antk3svcpb

  • MD5

    80c9352e6ccabb87ee00ac284ceee480

  • SHA1

    cef3c8042f9b1ddae314945aa6d62811ef07e1ef

  • SHA256

    c7cb86a7cf62f7dea727aa83cc6eb9b0eeba64a1de79ff4ba8a6a105f629f969

  • SHA512

    93cf2d710bbf30069247c83ba92c1bcfaee984594fa7db9f6e82158619d94e4c5aea49535830f496a93adf3c0c4e42f0690cf1ea60fc9823929ce23523159e29

  • SSDEEP

    3072:WBWHWVKhqPEzO/V1VrNYQkCA+HFSWvO3TBftcnob2:OWHg9DNYtEHhvO3TBlcnob

Score
10/10

Malware Config

Targets

    • Target

      80c9352e6ccabb87ee00ac284ceee480_JaffaCakes118

    • Size

      5.0MB

    • MD5

      80c9352e6ccabb87ee00ac284ceee480

    • SHA1

      cef3c8042f9b1ddae314945aa6d62811ef07e1ef

    • SHA256

      c7cb86a7cf62f7dea727aa83cc6eb9b0eeba64a1de79ff4ba8a6a105f629f969

    • SHA512

      93cf2d710bbf30069247c83ba92c1bcfaee984594fa7db9f6e82158619d94e4c5aea49535830f496a93adf3c0c4e42f0690cf1ea60fc9823929ce23523159e29

    • SSDEEP

      3072:WBWHWVKhqPEzO/V1VrNYQkCA+HFSWvO3TBftcnob2:OWHg9DNYtEHhvO3TBlcnob

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

MITRE ATT&CK Enterprise v15

Tasks