General

  • Target

    JaffaCakes118_46ec523cbc3e0500e95fe56c7f4379ef

  • Size

    151KB

  • Sample

    250128-e62rmaxlft

  • MD5

    46ec523cbc3e0500e95fe56c7f4379ef

  • SHA1

    9ba163609216725c694a68fd03c6e855127801fc

  • SHA256

    9b79ae4fc2a6864490deea288285d389126cc67f9fb2e7a8eec82c1dc8508a0c

  • SHA512

    1a4bf147ecde08b58e3376df78e9a5977ef4e867cff1eff49239e2caae6ce5c15a0f2a6875f5e1dcb781476651345229fe42d0beb472825440e283d7ecc3a22f

  • SSDEEP

    3072:bPJz5C9qblUloHkRz9Vg6cBLGKip8Fk6k47SUyC57EI:bPwoH+5IoK2Gjk42x2wI

Score
10/10

Malware Config

Targets

    • Target

      JaffaCakes118_46ec523cbc3e0500e95fe56c7f4379ef

    • Size

      151KB

    • MD5

      46ec523cbc3e0500e95fe56c7f4379ef

    • SHA1

      9ba163609216725c694a68fd03c6e855127801fc

    • SHA256

      9b79ae4fc2a6864490deea288285d389126cc67f9fb2e7a8eec82c1dc8508a0c

    • SHA512

      1a4bf147ecde08b58e3376df78e9a5977ef4e867cff1eff49239e2caae6ce5c15a0f2a6875f5e1dcb781476651345229fe42d0beb472825440e283d7ecc3a22f

    • SSDEEP

      3072:bPJz5C9qblUloHkRz9Vg6cBLGKip8Fk6k47SUyC57EI:bPwoH+5IoK2Gjk42x2wI

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Gh0strat family

    • Deletes itself

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.