Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

045f4cea4f...66.exe

windows7-x64

10

045f4cea4f...66.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    045f4cea4f863d9def6967fe35303066

  • Size

    6.4MB

  • Sample

    231229-z81ybsgda3

  • MD5

    045f4cea4f863d9def6967fe35303066

  • SHA1

    e40b4393ac099688bee151c475c71a4354c69654

  • SHA256

    7f172d780a290e00ba180bab8e5fcec4d1a8f6d8512310794d7e5e9cd45e829d

  • SHA512

    4779aa92792799d9e5dd6cce3a05c5f06959cdc8213e2fb5c5127733ff1d5c9108f7a13e926ea36f1661bda133b574ac484c5a3bfeed18fdf16f17d03509788f

  • SSDEEP

    98304:Vi3w/4GrQBeQZ1P/by87heRw6+vllYmTDv7GQ6pwoTxFI:VCw/+eMy8te2dlYEDGQT6

Score
10/10
zgratrat

Malware Config

Targets

    • Target

      045f4cea4f863d9def6967fe35303066

    • Size

      6.4MB

    • MD5

      045f4cea4f863d9def6967fe35303066

    • SHA1

      e40b4393ac099688bee151c475c71a4354c69654

    • SHA256

      7f172d780a290e00ba180bab8e5fcec4d1a8f6d8512310794d7e5e9cd45e829d

    • SHA512

      4779aa92792799d9e5dd6cce3a05c5f06959cdc8213e2fb5c5127733ff1d5c9108f7a13e926ea36f1661bda133b574ac484c5a3bfeed18fdf16f17d03509788f

    • SSDEEP

      98304:Vi3w/4GrQBeQZ1P/by87heRw6+vllYmTDv7GQ6pwoTxFI:VCw/+eMy8te2dlYEDGQT6

    Score
    10/10
    zgratrat

    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks