Extracted

• • Target

    5f993406f8b76532b59a8516a94983f440c04028e577141e485bcf98dbd47439

  • Size

    51KB

  • MD5

    c809ea28be98dfd6721c1b446ec22cea

  • SHA1

    d5d902c7b5fc01d9b1d407f9dc27ba449d7b3141

  • SHA256

    5f993406f8b76532b59a8516a94983f440c04028e577141e485bcf98dbd47439

  • SHA512

    dbb9668f44a3b4c8696d3cbddf978406fa6fd480dc63642075a087813947a7e65596d0bcf4d6004756caad1cb399901831af58ffba251a1dc895fa46f18b7efc

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLFJYH5:1dWubF3n9S91BF3fbohJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2