zgrat | 0b5b79893faa97f10737f52617ff8cdf0de0c0e064ae8303cd12eddf23ee2141 | Triage

Submit
Reports

Overview

overview

Static

static

3

dd2739067b...43.exe

windows7-x64

3

dd2739067b...43.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

dd2739067bfd088a6a1e5f7502105643.exe1111
Size

721KB
Sample

240110-k5d7tsdeb2
MD5

dd2739067bfd088a6a1e5f7502105643
SHA1

819dd6a079abab8d34f85d9a1d06a0d556745fb7
SHA256

0b5b79893faa97f10737f52617ff8cdf0de0c0e064ae8303cd12eddf23ee2141
SHA512

b246edb5d53c1794dab80a6bbcb2997e47a5868e7ccb67accebaf3797413d66edd82a73aeb4444aadea8fcc7f9e0bc3c83ae806caf78e4f16db0c0688801f9ad
SSDEEP

12288:3izZBEP85HLKFLHOa8VnCTvy3PvoD5Xi0ztOTQHmO8eaktaLh/x2:S9BEP8RLKFLuPnCJln5OcHh8eaiC52

Score

10^/10

zgrat rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dd2739067bfd088a6a1e5f7502105643.exe

Resource

win7-20231215-en

windows7-x64

2 signatures

1800 seconds

Behavioral task

behavioral2

Sample

dd2739067bfd088a6a1e5f7502105643.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

5 signatures

1800 seconds

Malware Config

Targets

- Target
  
  dd2739067bfd088a6a1e5f7502105643.exe1111
- Size
  
  721KB
- MD5
  
  dd2739067bfd088a6a1e5f7502105643
- SHA1
  
  819dd6a079abab8d34f85d9a1d06a0d556745fb7
- SHA256
  
  0b5b79893faa97f10737f52617ff8cdf0de0c0e064ae8303cd12eddf23ee2141
- SHA512
  
  b246edb5d53c1794dab80a6bbcb2997e47a5868e7ccb67accebaf3797413d66edd82a73aeb4444aadea8fcc7f9e0bc3c83ae806caf78e4f16db0c0688801f9ad
- SSDEEP
  
  12288:3izZBEP85HLKFLHOa8VnCTvy3PvoD5Xi0ztOTQHmO8eaktaLh/x2:S9BEP8RLKFLuPnCJln5OcHh8eaiC52
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy