povertystealer | 9ed34ad9513c9bbe419eb3e0e984fa29e8e97ac5267ef1cd45c5a42d07d36549 | Triage

Submit
Reports

Overview

overview

Static

static

1

file.html

windows7-x64

file.html

windows10-2004-x64

1

Resubmissions

15-07-2024 18:18

240715-wx1awatamk 1

31-01-2024 15:24

240131-stc5dsfae3 10

Sharing

General

Target

file
Size

308KB
Sample

240131-stc5dsfae3
MD5

df7bffba44af463abf141ad3f99affbd
SHA1

384e990731f1049309bdcfa96986a756ecedb010
SHA256

9ed34ad9513c9bbe419eb3e0e984fa29e8e97ac5267ef1cd45c5a42d07d36549
SHA512

e7b745018d545cd519ff4d861baa6d8fef303e2321bb0a2743706385180ba7f74bb59f596aac0add867d7aca4d83bbc0ce519178b0e53213ff6014bf16887a93
SSDEEP

3072:tiSgAkHnjP/Q6KSEv/EHtPaW+LN7DxRLlzglKp7N6:3gAkHnjP/QBSE0NPCN7jBp7N6

Score

10^/10

povertystealer zgrat rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

file.html

Resource

win7-20231215-en

povertystealer zgrat rat stealer

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.html

Resource

win10v2004-20231222-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  file
- Size
  
  308KB
- MD5
  
  df7bffba44af463abf141ad3f99affbd
- SHA1
  
  384e990731f1049309bdcfa96986a756ecedb010
- SHA256
  
  9ed34ad9513c9bbe419eb3e0e984fa29e8e97ac5267ef1cd45c5a42d07d36549
- SHA512
  
  e7b745018d545cd519ff4d861baa6d8fef303e2321bb0a2743706385180ba7f74bb59f596aac0add867d7aca4d83bbc0ce519178b0e53213ff6014bf16887a93
- SSDEEP
  
  3072:tiSgAkHnjP/Q6KSEv/EHtPaW+LN7DxRLlzglKp7N6:3gAkHnjP/QBSE0NPCN7jBp7N6
Score

10^/10

povertystealer zgrat rat stealer
- Detect Poverty Stealer Payload
- Detect ZGRat V1
- Poverty Stealer
  Poverty Stealer is a crypto and infostealer written in C++.
  stealer povertystealer
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

povertystealerzgratratstealer

behavioral2

© 2018-2025

Terms | Privacy