Extracted

• • Target

    d1a7342df42ec556ac6e9404678b6d60a1811fb53e73ef8252f48f410a27a97b

  • Size

    899KB

  • MD5

    7d8e249178bb3c682aa3740d6f70e21d

  • SHA1

    b8f63d9f8c7b9a6730420bfa1cb727cc260bab5d

  • SHA256

    d1a7342df42ec556ac6e9404678b6d60a1811fb53e73ef8252f48f410a27a97b

  • SHA512

    fc4cca1845c2f1532cc36ae4df9b49d689b9a9a45d54ee19048eceaf078b534cc81308e6de8dc37b1981baf5e4b5d16cb77826685e4df6f23e0c2ef8262fd51b

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXJ:7wqd87VJ

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2