zebrocy | cd9c6bafeef092b670ea307caf9cd2aeb234e5232950be1181f24ab41a26a4d1 | Triage

Submit
Reports

Overview

overview

Static

static

3

212207f5a1...ef.exe

windows7-x64

1

212207f5a1...ef.exe

windows10-2004-x64

Sharing

General

Target

212207f5a1eb39c861ff8b080ddcd2ef
Size

3.6MB
Sample

231225-qjn3ssahb2
MD5

212207f5a1eb39c861ff8b080ddcd2ef
SHA1

4613aa3cba20966b5ce95918893df9e5053d206d
SHA256

cd9c6bafeef092b670ea307caf9cd2aeb234e5232950be1181f24ab41a26a4d1
SHA512

0b341c34f0590e4a4dccc1100db2f83b63241bd8fb8f95a8185fa303a24fa53270a3ab76de5d7f22260545a84ec262c218f2e2ba89f660396c3b837df3b8eaed
SSDEEP

98304:aYhWM7csQQNHTdcf5KsQFHxmKUhgggggggWGqS9xkuDQZt/:aPMfzBdcU7FRahggggggg8S9xgZ9

Score

10^/10

zebrocy backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

212207f5a1eb39c861ff8b080ddcd2ef.exe

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

212207f5a1eb39c861ff8b080ddcd2ef.exe

Resource

win10v2004-20231215-en

zebrocy backdoor trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  212207f5a1eb39c861ff8b080ddcd2ef
- Size
  
  3.6MB
- MD5
  
  212207f5a1eb39c861ff8b080ddcd2ef
- SHA1
  
  4613aa3cba20966b5ce95918893df9e5053d206d
- SHA256
  
  cd9c6bafeef092b670ea307caf9cd2aeb234e5232950be1181f24ab41a26a4d1
- SHA512
  
  0b341c34f0590e4a4dccc1100db2f83b63241bd8fb8f95a8185fa303a24fa53270a3ab76de5d7f22260545a84ec262c218f2e2ba89f660396c3b837df3b8eaed
- SSDEEP
  
  98304:aYhWM7csQQNHTdcf5KsQFHxmKUhgggggggWGqS9xkuDQZt/:aPMfzBdcU7FRahggggggg8S9xgZ9
Score

10^/10

zebrocy backdoor trojan
- Zebrocy
  Zebrocy is a backdoor created by Sofacy threat group and has multiple variants developed in different languages.
  trojan backdoor zebrocy
- Zebrocy Go Variant
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

zebrocybackdoortrojan

© 2018-2024

Terms | Privacy