Overview

overview

10

Static

static

10

tmp.exe

windows7-x64

10

tmp.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    tmp

  • Size

    5.5MB

  • MD5

    567c7194a3a0d74cb6bfd411e517c589

  • SHA1

    cc65d39f35256579c380de21d289a87d555f4203

  • SHA256

    e45f4f41cf7e4aeed54be16f4e6cf1684ea0f2ad16562eb6015978af48c21ef3

  • SHA512

    2e6e385381d5e4c00dc4cb5a900ddef705703354024d932a8232bd3699c5688070cf05c92dce0785f3edde554e04b5f5635d5d2b669af3bc37f40313219f3c39

  • SSDEEP

    98304:hnxheJhMZqeSTO/EcuRG/Mul2rq/aReDkizMeQU:hxIj+qX7c/Mul2rVe4iwVU

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • tmp
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections