zgrat | 5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9 | Triage

Submit
Reports

Overview

overview

Static

static

5768eba671...f9.exe

windows7-x64

5768eba671...f9.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9
Size

7.9MB
Sample

231116-eezg7afe38
MD5

a46d082492eba45dff4253457a9de5ed
SHA1

45e9a8b5028fb7ccd1de374489456c6a2f984b21
SHA256

5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9
SHA512

53cfe35b0968464eeae36c081bcf71aecd96caae809f7ffe27346aa97120186e0dd234a9bf0ed752ba1e2de907a285f1dd5a1f26f6d47d3e2297f66583c6c048
SSDEEP

196608:bW+hUvL/bLtFSDr3Asak/2RUADnoXZd64KxgBZb:bWcqHtFGrwUU1nxgBZ

Score

10^/10

zgrat rat

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9.exe

Resource

win7-20231020-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9
- Size
  
  7.9MB
- MD5
  
  a46d082492eba45dff4253457a9de5ed
- SHA1
  
  45e9a8b5028fb7ccd1de374489456c6a2f984b21
- SHA256
  
  5768eba6718c932e9caa87170c71edebe36888bc125a811ed59b7ec829f624f9
- SHA512
  
  53cfe35b0968464eeae36c081bcf71aecd96caae809f7ffe27346aa97120186e0dd234a9bf0ed752ba1e2de907a285f1dd5a1f26f6d47d3e2297f66583c6c048
- SSDEEP
  
  196608:bW+hUvL/bLtFSDr3Asak/2RUADnoXZd64KxgBZb:bWcqHtFGrwUU1nxgBZ
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- .NET Reactor proctector
  Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy