Extracted

• • Target

    c7e83150d0a1ab2e0f918bd6d7ee7787fa679070b29590d346071d9f3d0181de

  • Size

    50KB

  • MD5

    5eeb87680f844854ff2af7490f77f2be

  • SHA1

    78458285acabd5bde17b1673e56aae09c27052f8

  • SHA256

    c7e83150d0a1ab2e0f918bd6d7ee7787fa679070b29590d346071d9f3d0181de

  • SHA512

    8a98b64cebc0c6fadc6097585ce71ae84eb60f1d8c0ae29c76c2fb83f64d24d9d9113166cc4e68f8d32931c786d4fce278c992f52400695195a5f297d7020268

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5pJYH:W5ReWjTrW9rNPgYofJYH

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2