General
-
Target
JaffaCakes118_4e1b273409efaa704bc1721a127166d0
-
Size
98KB
-
Sample
250304-sk6ekstpx3
-
MD5
4e1b273409efaa704bc1721a127166d0
-
SHA1
ba4fd086e28058d9426374717809d7f1b20e990f
-
SHA256
56dc37020648a0dbbc1d5126b4e87de1c83e62a28f66ab15da24cd875fc96c47
-
SHA512
70dff1358373cd7fdc815cf8726ef3d7f1a428a94dc5bbba1825c5bc06ebfdb36b912822358bbaf58e363f91c56d3f69aa5b72908cf0c9d5ae9f2d35b1574ba7
-
SSDEEP
3072:/Ad6qZLVZFOnHlFVB4MkwaCmTw+dj3dgkv:IdtdVKbVST/CCw+p3dP
Malware Config
Targets
-
-
Target
JaffaCakes118_4e1b273409efaa704bc1721a127166d0
-
Size
98KB
-
MD5
4e1b273409efaa704bc1721a127166d0
-
SHA1
ba4fd086e28058d9426374717809d7f1b20e990f
-
SHA256
56dc37020648a0dbbc1d5126b4e87de1c83e62a28f66ab15da24cd875fc96c47
-
SHA512
70dff1358373cd7fdc815cf8726ef3d7f1a428a94dc5bbba1825c5bc06ebfdb36b912822358bbaf58e363f91c56d3f69aa5b72908cf0c9d5ae9f2d35b1574ba7
-
SSDEEP
3072:/Ad6qZLVZFOnHlFVB4MkwaCmTw+dj3dgkv:IdtdVKbVST/CCw+p3dP
Score10/10-
Gh0st RAT payload
-
Gh0strat
Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.
-
Gh0strat family
-