Extracted

• • Target

    c6ac162e5efda7a06360146cea0f06d1247939d181bb2422e47c6a8efec72b97.exe

  • Size

    899KB

  • MD5

    a6ae82c2d75e4ce02c446dfd43c3172e

  • SHA1

    8005bc9e4b4c9d03637651d56d23b289d0cc7052

  • SHA256

    c6ac162e5efda7a06360146cea0f06d1247939d181bb2422e47c6a8efec72b97

  • SHA512

    73b9846a2f9febe298f2f95344da3db6b01401515a4c52b92d2ab068dc7fcb74a9f793a6f9ec89c102ac7ec32004e6ab4cdd8c81a4568e299592af80ef4de5ce

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXqm:7wqd87Vqm

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2