Overview

overview

10

Static

static

10

5dcdccafe7...50.exe

windows7-x64

10

5dcdccafe7...50.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5dcdccafe7de2451a4838fce96713e417ff615bba64106f661296e6a7bf00950.exe

  • Size

    6.5MB

  • MD5

    25a9699ffd172a3f5332ea65aeb60e0d

  • SHA1

    965b6041b69b942d01a9e3cd7b9e95926012ce53

  • SHA256

    5dcdccafe7de2451a4838fce96713e417ff615bba64106f661296e6a7bf00950

  • SHA512

    7ee7795037238021c70586583852bc6b9eb46e9998b33ac7f37000fcf1c6fdc90a22f3ff12e618ce4a6c2a93118f2bd4adaba167fd50e8865f28c5d8ee2719bc

  • SSDEEP

    196608:EwcuKdNj8XpAJqDDEC5L/Mul2rVe4iwVUz:EwcLj+AJI4CtlWV1zO

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5dcdccafe7de2451a4838fce96713e417ff615bba64106f661296e6a7bf00950.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections