Extracted

• • Target

    3765862404bf5dcc8c5eb4e9bfe1a5829fc83b7db08c0ae74a02ea4b42f3570a

  • Size

    49KB

  • MD5

    824dd075b7213f27669a3567c9808fdc

  • SHA1

    e99a7c20af99cba9e9c277841c6af633cf106741

  • SHA256

    3765862404bf5dcc8c5eb4e9bfe1a5829fc83b7db08c0ae74a02ea4b42f3570a

  • SHA512

    4aa1ac76ff60db17ff7920eda8e60ffe7f805d518ff1e00d27d4aab31778e70c5448ae670f61b0dd6e32e60febd75f2e4681aa4b453809de07486e440966e75d

  • SSDEEP

    1536:CDwMsml26T5zBj+alf1H9jfbyqkY4ZvoDUb/gJOpJYHB9ElHS:Cn7zBjPp1H9ovoDa/gJOJYHBWZS

  Score

  10^/10

  gh0stratdiscoveryrat

  • Gh0st RAT payload

  • Gh0strat

    Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    ratgh0strat

  • Gh0strat family

    gh0strat
  behavioral1behavioral2