Extracted

• • Target

    596addfbd3d350119d42ab8fc535f54a295dfef52722151c6510f148a1f664c2

  • Size

    50KB

  • MD5

    5f5cd76004f6650635a1f5802af07d55

  • SHA1

    4631ff9c1516c9dd75e68f0be9a8b5c6f8ee034a

  • SHA256

    596addfbd3d350119d42ab8fc535f54a295dfef52722151c6510f148a1f664c2

  • SHA512

    be58aed7d87ad9217a8798220b7184407513b344dcc052b10a4a957628437d6097c9acbdc1fc7616801d31b50d109cf1866ce059708466346a36aeb04d445df2

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5pJYH:W5ReWjTrW9rNPgYo7JYH

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2