Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2afe84f8866168611d41b5eec0345f3e3459f611a77859f71f9be7e0f635736d

  • Size

    4.7MB

  • MD5

    37f406c2985041ad85f1f3d6db1249ff

  • SHA1

    56f4ed0bcba0bf7fe60c27d1ddf260f32b9e29c3

  • SHA256

    2afe84f8866168611d41b5eec0345f3e3459f611a77859f71f9be7e0f635736d

  • SHA512

    f3415cb83d10ef62aca5986dd668b1109162651eaf509a06ee42bc1f3fb63c2ff5d8ab7ceeac9c098f3b5f121c8d278a0d97f3341e13f0f55bf564aaed1f5b6b

  • SSDEEP

    98304:xrfhS3srwSUx+DMn+8vYDhRgUqmF14UZr:xrfhS3EDg+lZt9Z

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2afe84f8866168611d41b5eec0345f3e3459f611a77859f71f9be7e0f635736d
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections