Extracted

• • Target

    36ba0435838e95d7ede42686c0d0185e08d9f2c0c86def013091c0c88157bd8d

  • Size

    899KB

  • MD5

    61906d7b0bf4036948ef90d25b40229a

  • SHA1

    fedaaf3318713a4f3b457d0c4de04459a143f41b

  • SHA256

    36ba0435838e95d7ede42686c0d0185e08d9f2c0c86def013091c0c88157bd8d

  • SHA512

    35f493bb97163e2c237ed7407adb5f872cfd07e593d13cb4d82f31bff4bfc93c73f4b797513dec01d4d0aea585c1174b1b8cb80bf00f8d049b5769da17354dc3

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PX/:7wqd87V/

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2