Overview

overview

10

Static

static

10

9a16059208...36.exe

windows7-x64

10

9a16059208...36.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a160592080e75a6d21975eec5044d138a40b375cab07f65048bd7667a06b936.exe

  • Size

    1.9MB

  • MD5

    17e9f72145ff1fc2442d7e30f665555b

  • SHA1

    9a50226b1a9c32bce1aacede2ff0e39280a3c75b

  • SHA256

    9a160592080e75a6d21975eec5044d138a40b375cab07f65048bd7667a06b936

  • SHA512

    015c3ce2aeeef49fdb516a49d3c48f01c875e83dae0cbdab9026f1de81253f72d355c1875bc3e86e3b0ba804da916018178cd63558d062b782c93e4d7ba70bdc

  • SSDEEP

    24576:Xqr3u4THSw/6u8AhJJLjq4khWR7QK0KIv0mebLN5FWC5Nc:av//+AhvOJWBItMmqv5

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Detects executables packed with unregistered version of .NET Reactor 1 IoCs
  • Zgrat family
    zgrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9a160592080e75a6d21975eec5044d138a40b375cab07f65048bd7667a06b936.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections