Overview

overview

10

Static

static

10

edd0efee31...ca.exe

windows7-x64

10

edd0efee31...ca.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    edd0efee31afa02a93fffde9a51640446f9de58ff13a456c4410bee9fc0fe3ca

  • Size

    4.7MB

  • MD5

    7f6150d477d9eaf6f70436491a89dfe3

  • SHA1

    06e90b4416529f7b572a64394ae191c33ba47ce6

  • SHA256

    edd0efee31afa02a93fffde9a51640446f9de58ff13a456c4410bee9fc0fe3ca

  • SHA512

    732c21e5da5ad89f5061c3c7abde6590e4521e82b3d84f7a46a3d5de2c1049892a315ae32425e5cc8f46698e58412ef4e84d48f07955621a2045c5e5791ba9dd

  • SSDEEP

    98304:e+82Cvvk+b+2X7yzuF3PQ6Oy+shbZ24+0TilcsuNmLZcwoteB:V8VvvDR3PtvA4+0TeENwXoteB

Score
10/10
vmprotectzgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • edd0efee31afa02a93fffde9a51640446f9de58ff13a456c4410bee9fc0fe3ca
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections