zgrat | 5ccb31ec6aaf7cbfd7b8b4d5817e11e616e99e3d21e376b510ea0afce19f518d | Triage

Submit
Reports

Overview

overview

Static

static

3

ORDER PDF.exe

windows7-x64

ORDER PDF.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

4bae4c3f398e818f4874d249cc8a6a65
Size

143KB
Sample

240108-rskmeaceb9
MD5

4bae4c3f398e818f4874d249cc8a6a65
SHA1

1b349a3159fbe94514f75af44b04ff624e60bfa2
SHA256

5ccb31ec6aaf7cbfd7b8b4d5817e11e616e99e3d21e376b510ea0afce19f518d
SHA512

0b06f544145e558e5d3fad2931203363b7f417270c5c106fead2c90772b5f9a578d6be47474143cb5084b02ebb47974e70581152c9b372b9ce7df7dca9262b18
SSDEEP

3072:j3XnPrUudo/6v8HQkDwbzLgKQV0qUN+w3gF3MhJEMEoZn+0K:PI/6BzLvQV0hUE3EKK

Score

10^/10

zgrat rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ORDER PDF.exe

Resource

win7-20231215-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ORDER PDF.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ORDER PDF.exe
- Size
  
  297KB
- MD5
  
  2cabd312ceecf306fb34337b1cec6b60
- SHA1
  
  651fcedd94b87db0d563feb34f5c45441bf58b19
- SHA256
  
  c075f5ed220d8525319769df7c13636da0b1811cb0497af91ea53b2473711bd2
- SHA512
  
  dea464a949077b54ca4bab96b78f4910851ddd69a637b2f8ac23bfea8027eb8cf02c6710f252a6960d9db83641b485ff200a36b8cfc43a8a1c9b12df362793a2
- SSDEEP
  
  6144:RJR/V8Jj0klDyNSj4mr8KZyvsanCdU9IbQXFWNIDScwzih:RJZV8Jj0klDyEjpr86yvsYC+GkXFWYwu
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy