zgrat | 89c51592ee6321accf8231b101dbabf64ba4ff364e17e648d97eac9731d2a67f

General

Target

89c51592ee6321accf8231b101dbabf64ba4ff364e17e648d97eac9731d2a67f
Size

764KB
MD5

7e42910e8f54c8dc690397edeeff8734
SHA1

7ee86f2671a67571ddbdf4b9e81a7e97810ca8d4
SHA256

89c51592ee6321accf8231b101dbabf64ba4ff364e17e648d97eac9731d2a67f
SHA512

77a5a527c947b2feeb732420993f889cd75be041f4d341b9e635f7a68088293b74be46f87d446298d6a0fcf2b2d8c29df88de6f708fcd9665e5e72e9858b0bee
SSDEEP

12288:Vw2jio7lcVYdKmOWyXTtZR/VH19xmswzMtUAGNbGH9xsb45ZHoUA7Cbg24gj+Iwv:VwopOrXTtt30rz0wNb0fH5ZIUAy4k+Z

Score

10^/10

zgrat

Detect ZGRat V1 1 IoCs

resource	yara_rule
sample	family_zgrat_v1

.NET Reactor proctector 1 IoCs

Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

resource	yara_rule
sample	net_reactor

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89c51592ee6321accf8231b101dbabf64ba4ff364e17e648d97eac9731d2a67f