Extracted

• • Target

    f658de37a17dd1fe7c4dbbc6e14aff7d83781273fd859317c2cb267121d12485

  • Size

    899KB

  • MD5

    20e3e72e102ba020d09ea779b0619f54

  • SHA1

    079d1c83e644f348314f63aeae7c14cc26d43506

  • SHA256

    f658de37a17dd1fe7c4dbbc6e14aff7d83781273fd859317c2cb267121d12485

  • SHA512

    7f08af80cd93d960b527148884c10426ca6fe0eafb88b1f330f911eb76e098a310f1d83ae342c791ed4c1bd249c49cb0220a806384bb8df83b695ef0335e4578

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXZ:7wqd87VZ

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2