Extracted

• • Target

    960586bdf44ca1fcb8e80cd5846a77b6_JaffaCakes118

  • Size

    311KB

  • MD5

    960586bdf44ca1fcb8e80cd5846a77b6

  • SHA1

    50d76e219c07a9dc6d7fd827c9fe9f3ef050cfcb

  • SHA256

    92e2cc7980fc342c59860a0e6a16c73f10ee3b0caac53530121e89448933d305

  • SHA512

    1e2676c0357d3d1c1177d36816c84c5157956afc2d0ef30aa4fd0ea3aef3150cec31e3a9cdcd31a6d71b8cd2429973e27584e7a9b8003be475c935e31e1a283b

  • SSDEEP

    6144:su9GzKRez4NQntICmsEkmnzmlkyW0RE/GpQt3m8w2QJIsgozaFLF:dGzTz4NayXixEOpsmXJ/giU

  Score

  10^/10

  oskizgratinfostealerratspywarestealer

  • Detect ZGRat V1

  • Oski

    Oski is an infostealer targeting browser data, crypto wallets.

    infostealeroski

  • ZGRat

    ZGRat is remote access trojan written in C#.

    ratzgrat

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Suspicious use of SetThreadContext

  behavioral1behavioral2