Extracted

• • Target

    bd50b72bf71ecc314f40e867baf147f0d76d73446932affefcf819f85e6fd82d

  • Size

    51KB

  • MD5

    5c2d43b70b0b48b4326c381dd76b61cd

  • SHA1

    bb434064af460e2b1c92eed7e25efd02d2b0df8f

  • SHA256

    bd50b72bf71ecc314f40e867baf147f0d76d73446932affefcf819f85e6fd82d

  • SHA512

    15bc65df6aae0b1af47cd23c409366bdd25fb5640553486f4ec3e2f1a82c17f4305ad9b5e7787546352170bfd8b660f8231677834fffaa931bbd6c1ac5cc9d3d

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLOJYH5:1dWubF3n9S91BF3fboyJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2