General

  • Target

    335f2658eff814ba2b39cd662821a8e79d33e892eab48d64b439827d4a106ba5

  • Size

    899KB

  • Sample

    241109-zb9h7svjfn

  • MD5

    608fa6514c42a94f6818a3e0efcd93c6

  • SHA1

    a26948349558fd69d7eeca3176fc17855253b9cf

  • SHA256

    335f2658eff814ba2b39cd662821a8e79d33e892eab48d64b439827d4a106ba5

  • SHA512

    6626fd357a4190a86e6d8fc35d57cdfb158201ca2243dd68cc418e54e096253925d76d1e128fef09c6352e8ab65990c377ead30bd28ec160a626760165f1c8ef

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXE:7wqd87VE

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      335f2658eff814ba2b39cd662821a8e79d33e892eab48d64b439827d4a106ba5

    • Size

      899KB

    • MD5

      608fa6514c42a94f6818a3e0efcd93c6

    • SHA1

      a26948349558fd69d7eeca3176fc17855253b9cf

    • SHA256

      335f2658eff814ba2b39cd662821a8e79d33e892eab48d64b439827d4a106ba5

    • SHA512

      6626fd357a4190a86e6d8fc35d57cdfb158201ca2243dd68cc418e54e096253925d76d1e128fef09c6352e8ab65990c377ead30bd28ec160a626760165f1c8ef

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXE:7wqd87VE

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

MITRE ATT&CK Enterprise v15

Tasks