zgrat | 372d9957d0700d1d78193c898a5b1234

General

Target

372d9957d0700d1d78193c898a5b1234
Size

1.9MB
MD5

372d9957d0700d1d78193c898a5b1234
SHA1

9f24abc261a7675c59627de999c83f38ece9b9f8
SHA256

39b20e6219f79668d3f9c94dd93fc2ceaaeaa6b91466c562243ffde0c8a87cbc
SHA512

e576e5ac074dcc72a2fe7d7853a02565ac37107a3e03538f219340b64785954b329aa5471bd7b15e42fc503f731edf57ea45de6b75b8f63f4e96cdcf3035bbc3
SSDEEP

12288:ngxx0iLgiGigKV/eB8oWGQHdhuLBcm8VSEvHb5dF1JgVkCrDRHTqJsoGwTooDSaC:c5dF1JgrPp+soGxoDFsFiM

Score

10^/10

zgrat

Detect ZGRat V1 1 IoCs

resource	yara_rule
sample	family_zgrat_v1

.NET Reactor proctector 1 IoCs

Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

resource	yara_rule
sample	net_reactor

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
372d9957d0700d1d78193c898a5b1234