Overview

overview

10

Static

static

10

cortana.exe

windows10-1703-x64

10

cortana.exe

windows10-2004-x64

10

cortana.exe

windows11-21h2-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cortana.exe

  • Size

    3.7MB

  • MD5

    626a207702f7baf4573a89b6e303e7d9

  • SHA1

    3316bb963cf72347eb14df95220d6df5a9d1ac52

  • SHA256

    2814d0e896f45fe260842bcd848f4e2c24e9e913009c48b40df798c0e091ed4f

  • SHA512

    7b474b933ac1a7d3aabe76f795d56a6351516522a172dcf424ef44de5367fb0da4b735d7630c60eff3335ef90407ac11ed96c0c0d10cf570ac84f9200a9ce849

  • SSDEEP

    24576:kiy8GhI7M2RE+aR5T8wfm+Kmy/uygtLQ2VLmWQU:PG8MsEBR5lNK4zpm

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • cortana.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections