Overview

overview

10

Static

static

10

d3fdc737b6...ad.exe

windows7-x64

10

d3fdc737b6...ad.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d3fdc737b6c67b92e239b72492106972d4d599fb0b6aa83e0b5de1cba771c3ad.exe

  • Size

    3.5MB

  • MD5

    05488f673ffd2063badad75aaa0f7d83

  • SHA1

    15d293a62da1a91cd85fa617c49ec37457ed5c2b

  • SHA256

    d3fdc737b6c67b92e239b72492106972d4d599fb0b6aa83e0b5de1cba771c3ad

  • SHA512

    37708b31c9228394b92478f5faded17cdf1f5f21e01cb7bacc4eb9120e125f9edd49a7c7bfa0599e796eabe3678049c1ecade6b3f2ed313df8ceb251fa0715ee

  • SSDEEP

    49152:d1ulnlc/xDeUV383YfuoZpLuqBtk1EjPj4xyJ+JgM2wKwK4CiQvCyBQU00:d1ul2pSnYWoTyqI6E4AKuBKjJQUz

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Detects executables packed with unregistered version of .NET Reactor 1 IoCs
  • Zgrat family
    zgrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d3fdc737b6c67b92e239b72492106972d4d599fb0b6aa83e0b5de1cba771c3ad.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections