Extracted

• • Target

    2a8b905ae4a0e70dce9662d7e5a385b77f00c12c66222bb03d0d785093f32af3

  • Size

    899KB

  • MD5

    6076abf694a48c3f0c596ab04aa42806

  • SHA1

    d119b50ee20532b05ac974b38f9bf4cdd25976ed

  • SHA256

    2a8b905ae4a0e70dce9662d7e5a385b77f00c12c66222bb03d0d785093f32af3

  • SHA512

    985ba64b9d39178def8853ecd8b84f1eaa11f4471d23a494d10122c8224f53a8b6dd05c3429779d75989369bd063156f30aad444c68ae940fd2f81aa0bf0d827

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXN:7wqd87VN

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2