General

  • Target

    76c16fdbc68b7df3bc50ecc5a9492e77exe.exe

  • Size

    5.1MB

  • Sample

    240107-yaqt2acffk

  • MD5

    76c16fdbc68b7df3bc50ecc5a9492e77

  • SHA1

    5c67e77454f2f880919768c7d6e2f3a20bc0c53b

  • SHA256

    d63d27212f6e489dc2982042e25752db578b49c6c92e376951e84cdcb52ef5cd

  • SHA512

    474dcdb1e16e965c8fe4599afaf7a3bd9cf9bc1c5c84887bef6627ac5c4ebbb16ec007b16ab5d432df5abca06406999b8ff4b4c2070fb29201d17a573dd3f307

  • SSDEEP

    49152:lMHnYA4KPPiLXq5Uk7M1YqM2vvcQESniw+KO4sKa1DDs93LnpRRJVZ:oYE4XqxKrniw+KO4sKa1DQ9bnpPDZ

Score
10/10

Malware Config

Targets

    • Target

      76c16fdbc68b7df3bc50ecc5a9492e77exe.exe

    • Size

      5.1MB

    • MD5

      76c16fdbc68b7df3bc50ecc5a9492e77

    • SHA1

      5c67e77454f2f880919768c7d6e2f3a20bc0c53b

    • SHA256

      d63d27212f6e489dc2982042e25752db578b49c6c92e376951e84cdcb52ef5cd

    • SHA512

      474dcdb1e16e965c8fe4599afaf7a3bd9cf9bc1c5c84887bef6627ac5c4ebbb16ec007b16ab5d432df5abca06406999b8ff4b4c2070fb29201d17a573dd3f307

    • SSDEEP

      49152:lMHnYA4KPPiLXq5Uk7M1YqM2vvcQESniw+KO4sKa1DDs93LnpRRJVZ:oYE4XqxKrniw+KO4sKa1DQ9bnpPDZ

    Score
    10/10
    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks