Overview

overview

10

Static

static

10

1e66433493...11.exe

windows7-x64

10

1e66433493...11.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1e66433493d9aad550a2febe2433bd117129e968b055841c7ae1997369ac0511

  • Size

    694KB

  • MD5

    9bae6d3afb22e8f8c8aba60f652d55ec

  • SHA1

    9d909c53191dad75c84c75067594bd470cf34dac

  • SHA256

    1e66433493d9aad550a2febe2433bd117129e968b055841c7ae1997369ac0511

  • SHA512

    c664c37247e6a5209581a6be63ced107d98937ba119ca6a2dec2bda9cfb48dea751083f0c4e86026fc9d05c2b5cb76a68375c90095d0491152b695678bccc992

  • SSDEEP

    12288:tsQ4ZUXCJVkKs1Xx83mSsFhtFrnQbWWODTDBAYL/u5cvprvhrmYTl39521aV:todVknRxQBsFrFrnjtDT1AYL/Gkprvh3

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1e66433493d9aad550a2febe2433bd117129e968b055841c7ae1997369ac0511
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections