[악성코드 분석] 북한이 사용한 악성 프로그램 ‘유령쥐’ (Gh0st RAT)
Tags
Show in Graph
Common Information
Type Value
UUID 99ed33d0-3fb1-42b5-ad02-792cafd91413
Fingerprint 9f1a635b68a51f75
Analysis status DONE
Considered CTI value 0
Text language
Published July 1, 2016, 4:48 p.m.
Added to db Jan. 30, 2023, 4:35 p.m.
Last updated Oct. 29, 2024, 11:32 a.m.
Headline 잉카인터넷 시큐리티대응센터 블로그
Title [악성코드 분석] 북한이 사용한 악성 프로그램 ‘유령쥐’ (Gh0st RAT)
Detected Hints/Tags/Attributes 8/0/6
Source URLs
Redirection Url
Details Source https://isarc.tachyonlab.com/535
URL Provider
Details Provider Source level domain
Details tachyonlab.com isarc.tachyonlab.com
Attributes
Details Type #Events CTI Value
Details File 1 
zegost.exe
Details File 5 
svchsot.exe
Details File 156 
1.exe
Details Url 1 
http://www.a****5.com:2011/1.exe
Details Url 1 
http://www.f****5.com:2011/1.exe
Details Url 1 
http://www.w****8.com:2011/1.exe