Extracted

• • Target

    508865b5a291ecb8133a7cf8dad2405e1251a80386208fa843f124dc58879066

  • Size

    51KB

  • MD5

    36cc0fba4f1121308b4605daf0c7dcea

  • SHA1

    b316851ab1e16e1a8a31a527e8683b4a2148b05a

  • SHA256

    508865b5a291ecb8133a7cf8dad2405e1251a80386208fa843f124dc58879066

  • SHA512

    bd2d2fe9527df7c7bdf266d0c6c4c2b348f3560402019aa154ac011ce8b59adcb9a106d0dbdb59b9886f462888274ed2010d3bffe930ebe25a349a5c41869166

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frxroLdJYH5:1dWubF3n9S91BF3fNrohJYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2