Resubmissions

29-04-2024 23:03

240429-215bwsdf2t 10

29-04-2024 22:56

240429-2wntcade5z 10

General

  • Target

    29e2855576ec4417c8a639d62d9208d6.exe

  • Size

    1.6MB

  • Sample

    240429-2wntcade5z

  • MD5

    29e2855576ec4417c8a639d62d9208d6

  • SHA1

    6310c6a5c3f6391638774b582bb2a249dc532c7f

  • SHA256

    7c97de359b3788f96bdf5f96ca32222997e58d30fc66bec7cc09ed677c2b5cb8

  • SHA512

    86e3979b4221c1a5916a4ad176ae1a12ebd9f306597c725acdb5bb346c0a0837eb5b733d4fe44a5442faa1e9cbfc86aed1dff6d528833826df16cdd866a0d4a2

  • SSDEEP

    24576:PlhKoLLcuRdxPWwOfGlHrUgRURSbVZT8YrvKo9+T6BZ2/Y+K/NB8ohtAq:HzcifO0rUtSbxNBDpNBLA

Score
10/10

Malware Config

Targets

    • Target

      29e2855576ec4417c8a639d62d9208d6.exe

    • Size

      1.6MB

    • MD5

      29e2855576ec4417c8a639d62d9208d6

    • SHA1

      6310c6a5c3f6391638774b582bb2a249dc532c7f

    • SHA256

      7c97de359b3788f96bdf5f96ca32222997e58d30fc66bec7cc09ed677c2b5cb8

    • SHA512

      86e3979b4221c1a5916a4ad176ae1a12ebd9f306597c725acdb5bb346c0a0837eb5b733d4fe44a5442faa1e9cbfc86aed1dff6d528833826df16cdd866a0d4a2

    • SSDEEP

      24576:PlhKoLLcuRdxPWwOfGlHrUgRURSbVZT8YrvKo9+T6BZ2/Y+K/NB8ohtAq:HzcifO0rUtSbxNBDpNBLA

    Score
    10/10
    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks