General
-
Target
720899c013a3539d93fff482d1c177e3.bin
-
Size
547KB
-
MD5
59d6d4b428f3a208b35e3c7afb237815
-
SHA1
8210ddd2004aead9872d4c4011d7aabfa447973a
-
SHA256
cdd5d1bc8c5f88a0ea0a39b85be116344ad1740c32e5f3fb702d814301b1b48d
-
SHA512
71848154d98c85fd9be705b697db0e85ae26e1e477e7d87697af0009cc8cc16cb4bdc6d022ae96f6e8fedd35ed0efdb890099f37e6a20208f85feb9a4414bdbc
-
SSDEEP
12288:gSBO1osI0X4SuSOnh2WaN9jaTROODr8OW9GAIQMqPysagzy/SjMAy5:LB3XU4MOnh2PNJaTV4OYMqlagzySjMAu
Score
10/10
Malware Config
Signatures
-
Detect ZGRat V1 1 IoCs
-
Zgrat family
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
720899c013a3539d93fff482d1c177e3.bin
Password: infected
-
7da6d12086023c96287a5162169be9d3a14f0bd531737939081a8da250eaea96.exe
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections