Extracted

• • Target

    6e2049cc75855809859092edde20bb39b27fd4c475c6152cb56ced03d50f9019

  • Size

    51KB

  • MD5

    7c4b8d4ee6dbef7a61b2846a25f0eebb

  • SHA1

    96b6b204888a9c6a9a4148af40d7f1fca3b63f0a

  • SHA256

    6e2049cc75855809859092edde20bb39b27fd4c475c6152cb56ced03d50f9019

  • SHA512

    ebf7683221646984fc2c1075c021b277fa52e4b3c715b2fd74af94e60fe09fdcb0e99a3a031e5ac7c36f01fb470f6c1f2c1e96189aba39e46e01be0055c90073

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLRJYH5:1dWubF3n9S91BF3fbolJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2