Extracted

• • Target

    b4c02df7e08f631cdbaca8196ab8d83a67937e8a31fe84bf88e252350be803b9

  • Size

    899KB

  • MD5

    e940fe0f6a41f1b124680c3d88d94064

  • SHA1

    1871f83b33945e44b6dfd043d057025435aa8d4a

  • SHA256

    b4c02df7e08f631cdbaca8196ab8d83a67937e8a31fe84bf88e252350be803b9

  • SHA512

    44d62ba98202f7b4fa8067401f24276325ccd5c401cde3a8eb2c742f1c2259327194e944c60b219ff6f6285bad334607531f11ce0315d6e493fc42f75d7650a1

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXR:7wqd87VR

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2