Extracted

• • Target

    501c5193d08688f91c22fb62f225a2bbf464f835e3f76792fbbd142a8aee07af

  • Size

    51KB

  • MD5

    f69af210418dca954f85ad1a9a014a10

  • SHA1

    894267bb35c4146d2ef4bc6de5e573cec3e3dac2

  • SHA256

    501c5193d08688f91c22fb62f225a2bbf464f835e3f76792fbbd142a8aee07af

  • SHA512

    0467f34394db34012f15f9542f64345a9c8b025e49b8f063ff4ccb30823bd59ce3369b70d658a60d5fb3106af2038e88eb370d34ff6213ceec0f44269ddd4e7e

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLZJYH5:1dWubF3n9S91BF3fbolJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2