Overview

overview

10

Static

static

10

6745487031...ea.dll

windows7-x64

10

6745487031...ea.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    674548703146ede770b70fd59735c2af706973c38adc7d234fde16ef1914e8ea

  • Size

    899KB

  • Sample

    241114-ajabms1hpc

  • MD5

    808b9716457deef75c44bdf7c92bd5ed

  • SHA1

    4469a3f67b0089df38f9245c8aa17e8427e8597e

  • SHA256

    674548703146ede770b70fd59735c2af706973c38adc7d234fde16ef1914e8ea

  • SHA512

    9eb2e26a547f8b3377d2167bbdfb3aa8d30b5fe50fbc92bd40a9a48e6c38ba1f4d799111e9f1a0547da4b11fab9581f601ffa6057882e665f967a3340f8b1efe

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

Score
10/10
gh0stratdiscoveryrat

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      674548703146ede770b70fd59735c2af706973c38adc7d234fde16ef1914e8ea

    • Size

      899KB

    • MD5

      808b9716457deef75c44bdf7c92bd5ed

    • SHA1

      4469a3f67b0089df38f9245c8aa17e8427e8597e

    • SHA256

      674548703146ede770b70fd59735c2af706973c38adc7d234fde16ef1914e8ea

    • SHA512

      9eb2e26a547f8b3377d2167bbdfb3aa8d30b5fe50fbc92bd40a9a48e6c38ba1f4d799111e9f1a0547da4b11fab9581f601ffa6057882e665f967a3340f8b1efe

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXc:7wqd87Vc

    Score
    10/10
    gh0stratdiscoveryrat

    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

      ratgh0strat

    • Gh0strat family

      gh0strat
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks