Overview

overview

10

Static

static

10

不坑盒�...��.url

windows7-x64

1

不坑盒�...��.url

windows10-2004-x64

1

不坑盒�...up.exe

windows7-x64

10

不坑盒�...up.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f063724fbd3b0fa9f0ea3e42cc1bd5fc1a82c3526151fcc6b45392bee5469647

  • Size

    7.9MB

  • MD5

    1cc43f33ee0e443ef5ce3cf555eee09c

  • SHA1

    68210942393c64e95b500f5493de2925e2e48ddf

  • SHA256

    f063724fbd3b0fa9f0ea3e42cc1bd5fc1a82c3526151fcc6b45392bee5469647

  • SHA512

    f20133c5718ffa7bc83ed8d1ad09ab3b7a81d4fc7b1cbc7c52cd9e77abacf11e63a1e8d8fc4281d9c82aa49a29540ae7737c45687aa660e63bfbdd1f1d852863

  • SSDEEP

    196608:ECXmPye7I/DbIxJ3HaUl3S8BEpWjIklQU:72C/GXfS8BDBD

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f063724fbd3b0fa9f0ea3e42cc1bd5fc1a82c3526151fcc6b45392bee5469647
    .zip
  • 不坑盒子Word_2023.1001_Setup/!关注微信 - 更多福利.png
    .png
  • 不坑盒子Word_2023.1001_Setup/!果核剥壳 - 全网更新最快.url
    .url
  • 不坑盒子Word_2023.1001_Setup/不坑盒子Word_2023.1001_Setup.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections