Extracted

• • Target

    416c6b92e580ed86599bf7cde2f6b0da37f69ecd536b35a691dfa8161396ec3d

  • Size

    51KB

  • MD5

    cf1f315686db4694f5e6314139c1f374

  • SHA1

    2589183f93037594fc619efb31779dc452806c49

  • SHA256

    416c6b92e580ed86599bf7cde2f6b0da37f69ecd536b35a691dfa8161396ec3d

  • SHA512

    1d34d896633712f463b320fa825daedf57b3ac92a3e58abc6aaf8c7912ee0d401c8903bbcbc4f470c2d6f78cd74acc25b5a33b00b80fec64d8546e6c462de64d

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLIJYH5:1dWubF3n9S91BF3fboUJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2