Extracted

• • Target

    d1f16f302992599b4478934d15b469d376e4be3da2fd8ce4ab199c613661f55c

  • Size

    51KB

  • MD5

    8acba78cec72797de1e52cd629bba0f5

  • SHA1

    a2f4ecce0f81de2af54accc6eba0d67f041125b8

  • SHA256

    d1f16f302992599b4478934d15b469d376e4be3da2fd8ce4ab199c613661f55c

  • SHA512

    ba6e56cf1a01ba9b1dcd19ffe244aaf61d549be623984582e9a6e7b8e33360829051228a0e8af622ee01424a554ccd61d5bf6cc8c691d750682442bcb590816b

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLxJYH5:1dWubF3n9S91BF3fbo9JYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2