General

  • Target

    0c77b2f45f515035caafd8f3bcb330c342a734f311f3943c249ff464b8e015ff

  • Size

    50KB

  • Sample

    241230-s434kaymbm

  • MD5

    ee5e0e844339bcad3031596e721d3d82

  • SHA1

    8c5a5e36e9d3c3b251d5df783af84a5d597d128e

  • SHA256

    0c77b2f45f515035caafd8f3bcb330c342a734f311f3943c249ff464b8e015ff

  • SHA512

    ada9fea68b05fef644fb4bebff6a09023604ac899f8bcee94795fdec9e9b19ee66a09f4a357548172022c04bde9cd7d10673196273074615e468d9fa53d64e2b

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5tJYH:W5ReWjTrW9rNPgYozJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      0c77b2f45f515035caafd8f3bcb330c342a734f311f3943c249ff464b8e015ff

    • Size

      50KB

    • MD5

      ee5e0e844339bcad3031596e721d3d82

    • SHA1

      8c5a5e36e9d3c3b251d5df783af84a5d597d128e

    • SHA256

      0c77b2f45f515035caafd8f3bcb330c342a734f311f3943c249ff464b8e015ff

    • SHA512

      ada9fea68b05fef644fb4bebff6a09023604ac899f8bcee94795fdec9e9b19ee66a09f4a357548172022c04bde9cd7d10673196273074615e468d9fa53d64e2b

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5tJYH:W5ReWjTrW9rNPgYozJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

MITRE ATT&CK Enterprise v15

Tasks