Extracted

• • Target

    173eb0e090fdb5f4057106202ef1107d6e814078f9320115670f3d432137e8b8

  • Size

    51KB

  • MD5

    3161efb2a6ef0b58532acca5d5a0b3ab

  • SHA1

    4468945bb664f9ab47df160e20f103a8acf96340

  • SHA256

    173eb0e090fdb5f4057106202ef1107d6e814078f9320115670f3d432137e8b8

  • SHA512

    525ff8cde1ad4b226a8dc122d7fa6f4413e5944cd75fd066771a4f924eaa6aeb0c3b61aea7d425b67f10fa502bc240fba0a6549f75d556560be2bb25f50aa3bb

  • SSDEEP

    1536:1WmqoiBMNbMWtYNif/n9S91BF3frnoLcJYH5:1dWubF3n9S91BF3fbo4JYH5

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2