Extracted

• • Target

    e1ce9011ae30e6236a93ff79fe3e82c0ab0c31ad569c1e66aceb513b6959748f

  • Size

    51KB

  • MD5

    ab768a5d89d0d0d71c44413f0cbbb770

  • SHA1

    b6c96f10c11be4b44b08e659dbadd65707ef0f5b

  • SHA256

    e1ce9011ae30e6236a93ff79fe3e82c0ab0c31ad569c1e66aceb513b6959748f

  • SHA512

    7e4bcccd3d78481fc2c631f59ee851a1a04ab39577b74ced9d77bdb7f04521035ce6ab63258dcb287462c9c621bf8bc175a7918db385e19b780a1031a60fbd76

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLnJYH5:1dWubF3n9S91BF3fborJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2