Overview

overview

10

Static

static

10

tmp.exe

windows7-x64

10

tmp.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    tmp

  • Size

    311KB

  • MD5

    fd38c55c3090e720907e7758943e2668

  • SHA1

    23be109e14cdcceff8e6ac5fa38b60543ff3b2ba

  • SHA256

    ed45ecc4ccf2b0c304fb1068c986eb60b77e0efeb7674a8b96ca393ec8897abc

  • SHA512

    d34694515c84462cce84fc11c17e50c46a803ba80f15f391db73968b1bc5b6066c27a62545c2d569b5649278c887137594d5c32c2b9d049fb37218a0c4c05fa2

  • SSDEEP

    6144:LnMhvDPabL+lNQSqptAmYHtLxuRXnAS7:LnMpCuZWmHPeXnAS

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • tmp
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections