Extracted

• • Target

    1313779e45f8450bcd812a9eecf39514cfe8b94b73b65bfd83050778d4b80bf3

  • Size

    49KB

  • MD5

    2763aa38e312f354a91b9b2d706a5236

  • SHA1

    d45a41c05105893fa260cf99dc31c8118705f029

  • SHA256

    1313779e45f8450bcd812a9eecf39514cfe8b94b73b65bfd83050778d4b80bf3

  • SHA512

    d3a79e9fd0dea46c20382e9977c57b17efb3a92cbcbf06dde32e74523fff02c4b1d5129c52dcf3dd26de1af79d323f00e335f721885f8e45c126b017ebc4944c

  • SSDEEP

    1536:CDwMsml26T5zBj+alf1H9jfbyqkY4ZvoDUb/gJO/JYHB9ElHS:Cn7zBjPp1H9ovoDa/gJgJYHBWZS

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2