Overview

overview

10

Static

static

10

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    f8273b77424c5291dc8256d1754e83f56ae1418ca4e695978a59d5e17a0c8415

  • Size

    5.5MB

  • MD5

    8e770995556a6124e49cf46478eed33e

  • SHA1

    3728fd7646314a056d74ab5535191c451bde7da0

  • SHA256

    f8273b77424c5291dc8256d1754e83f56ae1418ca4e695978a59d5e17a0c8415

  • SHA512

    97b9a16661620132c939bf5e9daf81db0a2973d2cd022b430a46d8e6256bf28fc1f25694f78d9c747b26ae0c2a41067899688f2339ff76cc7cb49dac206bd5a8

  • SSDEEP

    98304:11YmquVD5UjA8jCJ5G/Mul2rq/aReDkizMeQU:/Ymqu55U1jCm/Mul2rVe4iwVU

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f8273b77424c5291dc8256d1754e83f56ae1418ca4e695978a59d5e17a0c8415
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections