zgrat | beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc | Triage

Submit
Reports

Overview

overview

Static

static

winprofile

windows7-x64

winprofile

windows10-1703-x64

Sharing

General

Target

beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc
Size

469KB
Sample

240429-fbrtlsah8z
MD5

667aa6ae90136dda41300e4f668932f9
SHA1

37f0b059e03ef0fae54c56ae33d3b156da9b02c0
SHA256

beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc
SHA512

d5a8e53278b3a937b57423165ec5d7c96502ec39b9c69968e46680a3866b0fd12a39aaf878b90915d4c3cceea0af110fabca8520b6fa4f85f35a95b2c08c7209
SSDEEP

6144:HeUUtGhDAl8FrxEhyTXSAjC9C2qHzTKqjBS27uwbPSijjNydQJjJqO98pPJ:HQsTXlF9jwqKkN9JqO98BJ

Score

10^/10

zgrat rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc.exe

Resource

win7-20231129-en

windows7-x64

5 signatures

300 seconds

Behavioral task

behavioral2

Sample

beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc.exe

Resource

win10-20240404-en

windows10-1703-x64

4 signatures

300 seconds

Malware Config

Targets

- Target
  
  beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc
- Size
  
  469KB
- MD5
  
  667aa6ae90136dda41300e4f668932f9
- SHA1
  
  37f0b059e03ef0fae54c56ae33d3b156da9b02c0
- SHA256
  
  beb03f0089fe98fa82414bb1ee2cf421b63a5a195e1aa25c542f6294bdb55ebc
- SHA512
  
  d5a8e53278b3a937b57423165ec5d7c96502ec39b9c69968e46680a3866b0fd12a39aaf878b90915d4c3cceea0af110fabca8520b6fa4f85f35a95b2c08c7209
- SSDEEP
  
  6144:HeUUtGhDAl8FrxEhyTXSAjC9C2qHzTKqjBS27uwbPSijjNydQJjJqO98pPJ:HQsTXlF9jwqKkN9JqO98BJ
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy