Overview

overview

10

Static

static

1

adguardVPN...er.exe

windows7-x64

10

adguardVPN...er.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    adguardVPNInstaller.exe

  • Size

    113KB

  • Sample

    231012-rzgjbsgd66

  • MD5

    49a7b6cbb30da964374cdd8530a14d24

  • SHA1

    9f24c79cc0fcc7fe6cce5a0283ba94821b4bff57

  • SHA256

    aa78d28127b7e9b4bb1fe32a5610a51dc2ee8248d5b55b7cced7e9650559ccc1

  • SHA512

    28aa023255265a2e8cfeb059de07e1923eae87d2aa2914af8141ec3cd7caf3cf867a8fd880ef7073fc1d8c8c14356beb88666d56f8c1a41fecbc2c89af2db185

  • SSDEEP

    1536:o4GZnjfFGS6VW3RtfNxwxfHKMFHPGwFCVZUpbdXH+j0NJszM8wpXxR:o4GZnrASj3/HQLFvGwFCZ+XH+IX8wp3

Score
10/10
zgratdiscoveryrat

Malware Config

Targets

    • Target

      adguardVPNInstaller.exe

    • Size

      113KB

    • MD5

      49a7b6cbb30da964374cdd8530a14d24

    • SHA1

      9f24c79cc0fcc7fe6cce5a0283ba94821b4bff57

    • SHA256

      aa78d28127b7e9b4bb1fe32a5610a51dc2ee8248d5b55b7cced7e9650559ccc1

    • SHA512

      28aa023255265a2e8cfeb059de07e1923eae87d2aa2914af8141ec3cd7caf3cf867a8fd880ef7073fc1d8c8c14356beb88666d56f8c1a41fecbc2c89af2db185

    • SSDEEP

      1536:o4GZnjfFGS6VW3RtfNxwxfHKMFHPGwFCVZUpbdXH+j0NJszM8wpXxR:o4GZnrASj3/HQLFvGwFCZ+XH+IX8wp3

    Score
    10/10
    zgratdiscoveryrat

    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Downloads MZ/PE file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks