Extracted

• • Target

    473edceea4d378ea4f32cd7174600bb92c981c7b7184848b86b9932515334865

  • Size

    51KB

  • MD5

    a533a3c296f0805cd9469ff6c477b53e

  • SHA1

    eff74c7b38922a65c90a589aa4b5f892ed50a2f6

  • SHA256

    473edceea4d378ea4f32cd7174600bb92c981c7b7184848b86b9932515334865

  • SHA512

    b54ea90158f54e175b03f107cdd00d769c256d97149c2637583b0863ff68ced53280c8c0697e0efe4744d61b13dd99b294e2971c5d89601ebf8feb983c4b8c0f

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLfJYH5:1dWubF3n9S91BF3fbojJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2