zgrat | 1ae493a18a577283ab5336ad68daf474371853d057000891640ba6376c46c37a | Triage

Submit
Reports

Overview

overview

Static

static

3

a448e4cacc...5c.exe

windows7-x64

a448e4cacc...5c.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

a448e4caccf5315d9451e5dc7b75c45c
Size

6.4MB
Sample

240225-vaxqssgc38
MD5

a448e4caccf5315d9451e5dc7b75c45c
SHA1

7630d5279adc76f269cd7739ef64dc696960dd6b
SHA256

1ae493a18a577283ab5336ad68daf474371853d057000891640ba6376c46c37a
SHA512

7146ea052777eadd1429695d2bf49df009fb3736931fd720d71ff4ffba3339bdb4312b0287ab27a3420c4d77bf2fed98349ef0ab91974445a7df04d59fc18295
SSDEEP

98304:BVneFQgJKbWCrzjRXk8dTIrYY0LT1a+rpJZ2OEfuofzLcX:BVeFqWAk8dIQv1aWP2OJg0

Score

10^/10

zgrat rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a448e4caccf5315d9451e5dc7b75c45c.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a448e4caccf5315d9451e5dc7b75c45c.exe

Resource

win10v2004-20240221-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  a448e4caccf5315d9451e5dc7b75c45c
- Size
  
  6.4MB
- MD5
  
  a448e4caccf5315d9451e5dc7b75c45c
- SHA1
  
  7630d5279adc76f269cd7739ef64dc696960dd6b
- SHA256
  
  1ae493a18a577283ab5336ad68daf474371853d057000891640ba6376c46c37a
- SHA512
  
  7146ea052777eadd1429695d2bf49df009fb3736931fd720d71ff4ffba3339bdb4312b0287ab27a3420c4d77bf2fed98349ef0ab91974445a7df04d59fc18295
- SSDEEP
  
  98304:BVneFQgJKbWCrzjRXk8dTIrYY0LT1a+rpJZ2OEfuofzLcX:BVeFqWAk8dIQv1aWP2OJg0
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy