Extracted

• • Target

    e3098a030b4bd02490a9bcd8a3bae0e1627cea0bbe24cd1bb98e8b5ea69e2412

  • Size

    51KB

  • MD5

    559e59a6902521436969faef8b6ac1a3

  • SHA1

    a01b4dd15c9a4c84cb30c18e25c7e777ffdaf230

  • SHA256

    e3098a030b4bd02490a9bcd8a3bae0e1627cea0bbe24cd1bb98e8b5ea69e2412

  • SHA512

    2550fc13dd60dac57fe0d3610ade012c5aa191c13e9174a733b28c42ed17a4f17fad4e615ff813db6c31cf39aedfaaf22732294a400cbeb6f659c23275ac8e9e

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoL8JYH5:1dWubF3n9S91BF3fboQJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2