Overview

overview

10

Static

static

10

9eaa6bfc17...ba.exe

windows7-x64

10

9eaa6bfc17...ba.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9eaa6bfc174fe5c45e001bc62965c81ced25ff40c0ce55fb54d88fa08bc787ba

  • Size

    4.7MB

  • MD5

    da40852adb4ed944c8e1ff88511ae2a0

  • SHA1

    d3c7017b33de02c91298230cb3f1d64e4bbbd9fd

  • SHA256

    9eaa6bfc174fe5c45e001bc62965c81ced25ff40c0ce55fb54d88fa08bc787ba

  • SHA512

    50d7a04c18e77b668ada1ffebc52f709f4ac0415102cb15f0a28f1863a9a62d292ba8731ae768e1598a0e126b3b056a8fa3968fb09e2823eec8de7693394dff8

  • SSDEEP

    98304:MRjYZIYeFzRbG4HFs80Ul7n6jA5PORXSUnYzjEaSIteB:MRkIYepR/xyiGXZnYXSIteB

Score
10/10
vmprotectzgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9eaa6bfc174fe5c45e001bc62965c81ced25ff40c0ce55fb54d88fa08bc787ba
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections