Extracted

• • Target

    630c30d337b9c967d4f7543f3d2333f9e1118695ce27d2a9fd4c029a6e487836

  • Size

    51KB

  • MD5

    4703f00b241e25a3e9cc2b521a6f4d8d

  • SHA1

    b9aef8af4a22c42b4cf418decaa8ae228ce80713

  • SHA256

    630c30d337b9c967d4f7543f3d2333f9e1118695ce27d2a9fd4c029a6e487836

  • SHA512

    b7794e3181d138a8579d8cfa24a27ccb8a207cb11d3b202db28a1e1d4bc679c59613018da600448307bf8758d171cb5e903d8c64df37f1a6cb068046a6fd15a9

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoL8JYH5:1dWubF3n9S91BF3fboAJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2