Extracted

• • Target

    642027705fb1ea1ef9f244f0e05413ea0ffb3f06c0e1e6d54e482b47da840d66

  • Size

    51KB

  • MD5

    e2f2001ccb05c5a2da4606d18b3b6c44

  • SHA1

    4cfaa4210b507d684ddb7b61eb15451de943651b

  • SHA256

    642027705fb1ea1ef9f244f0e05413ea0ffb3f06c0e1e6d54e482b47da840d66

  • SHA512

    7d016830ce183bfb769d86781e0b29b4dca3efb1327914d07c258ce95938081dd40e109058721fceba1ea45a007a077613d183bce72ac80d7d73460d6b3fa524

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoL+qJYH5:1dWubF3n9S91BF3fboRJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2