Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c621294c689defc4b76da675ded71aa710ab5fa20498f1d4dfa6fc1d4bc2455

  • Size

    2.5MB

  • Sample

    240319-xgbg9abf77

  • MD5

    af00c05a5029f7fd7dac013bb01d220c

  • SHA1

    f862ca3da392e901baf29eff5daebf57466cd62f

  • SHA256

    9c621294c689defc4b76da675ded71aa710ab5fa20498f1d4dfa6fc1d4bc2455

  • SHA512

    6470ef81ecbde644d9ac0dd7a38ef89671d07065311cb07887257108195c4d646557136fd0c2f620cd65525044106524f5cd649146459a84e85184f0a643b572

  • SSDEEP

    24576:W3TZV5M5F3tiPNMtPcp3MAtjkwbOo9JPWCcSodJKsUpOLrF6qiz+q/pGzELEVnQx:if5G3G+tUpjjzCo/rXgKfpOLNdcWY

Score
10/10
zgratrat

Malware Config

Targets

    • Target

      9c621294c689defc4b76da675ded71aa710ab5fa20498f1d4dfa6fc1d4bc2455

    • Size

      2.5MB

    • MD5

      af00c05a5029f7fd7dac013bb01d220c

    • SHA1

      f862ca3da392e901baf29eff5daebf57466cd62f

    • SHA256

      9c621294c689defc4b76da675ded71aa710ab5fa20498f1d4dfa6fc1d4bc2455

    • SHA512

      6470ef81ecbde644d9ac0dd7a38ef89671d07065311cb07887257108195c4d646557136fd0c2f620cd65525044106524f5cd649146459a84e85184f0a643b572

    • SSDEEP

      24576:W3TZV5M5F3tiPNMtPcp3MAtjkwbOo9JPWCcSodJKsUpOLrF6qiz+q/pGzELEVnQx:if5G3G+tUpjjzCo/rXgKfpOLNdcWY

    Score
    10/10
    zgratrat

    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks