Overview

overview

10

Static

static

10

0aa36fbc78...e7.exe

windows7-x64

10

0aa36fbc78...e7.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0aa36fbc782980bb987997f1a752c2e17c8a23fb1e96c4457143a8a74418c4e7

  • Size

    4.6MB

  • MD5

    9ac2da8458ccd53a69777c1a846c5805

  • SHA1

    37ead2d7bda1a034867daf6763563b31cdde6ef9

  • SHA256

    0aa36fbc782980bb987997f1a752c2e17c8a23fb1e96c4457143a8a74418c4e7

  • SHA512

    9ec858c8869007ff415dd65f8a19cc8608732d74447c0891172a4bfddf69264d264a9a283fa7384722b1975b9ef6b2d4de7ded3d7dfcbd465459ecf7ec105bca

  • SSDEEP

    98304:xF4JpDN4nH4WvLp9OZQiDwuHbfNJS+POReJumF0tj24qw6qYSjCv1teB:PwpDN4YGd90Q85bfNJS+POk50tq4qw64

Score
10/10
vmprotectzgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0aa36fbc782980bb987997f1a752c2e17c8a23fb1e96c4457143a8a74418c4e7
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections