zgrat | 2af1445920378f3ae07b2a38937bdc492d0ab03b5e898a5bc356bf51b0d594f3

General

Target

2af1445920378f3ae07b2a38937bdc492d0ab03b5e898a5bc356bf51b0d594f3
Size

5.6MB
MD5

776e35429a8a65b3c13d7cdfa241bca9
SHA1

7ff3772b49bc4c8083fa67dc3f0ea829ee33d34e
SHA256

2af1445920378f3ae07b2a38937bdc492d0ab03b5e898a5bc356bf51b0d594f3
SHA512

c38dff581c7ed3274c000bd24634a2abe08ddba9f469daf92c766e734b11775460c46e7586169b24955cda3d4c3acc85460ea79c7b6170a4186368aa27bc247a
SSDEEP

98304:roGRXpfNtNstyG/Mul2rq/aReDkizMeQUL:dRx3ml/Mul2rVe4iwVUL

Score

10^/10

zgrat

Detect ZGRat V1 1 IoCs

resource	yara_rule
sample	family_zgrat_v1

.NET Reactor proctector 1 IoCs

Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

resource	yara_rule
sample	net_reactor

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2af1445920378f3ae07b2a38937bdc492d0ab03b5e898a5bc356bf51b0d594f3