General

  • Target

    Hola-Browser-Setup-C-Mmd1.exe

  • Size

    5.5MB

  • Sample

    240501-wjky2acf4v

  • MD5

    0137f4f30e2a209a4c724fb24d30053e

  • SHA1

    02a53be826023dfde1d3a23417f28f2b1f2ed0ba

  • SHA256

    9196c33d47bc1528ea02d002a5d36c7cdde619d8f0530a7508e06ca58b742bc0

  • SHA512

    8b111420ca219afa75315cae6ab2318812a08c76bed328d7688947c5a79c710989d93bab3bdeeb62e45bf7d1d8e12680372fa199096ca5ffcaa27dbc9a14ae1b

  • SSDEEP

    98304:ihENTkgdAHO1XvXs0Vaw/Q4fXuEXBv6xuDKf1xkA/YwrLfDmt11yXZB7/:hf2HOZx8cBvq3RnzmtjyXZF/

Score
10/10

Malware Config

Targets

    • Target

      Hola-Browser-Setup-C-Mmd1.exe

    • Size

      5.5MB

    • MD5

      0137f4f30e2a209a4c724fb24d30053e

    • SHA1

      02a53be826023dfde1d3a23417f28f2b1f2ed0ba

    • SHA256

      9196c33d47bc1528ea02d002a5d36c7cdde619d8f0530a7508e06ca58b742bc0

    • SHA512

      8b111420ca219afa75315cae6ab2318812a08c76bed328d7688947c5a79c710989d93bab3bdeeb62e45bf7d1d8e12680372fa199096ca5ffcaa27dbc9a14ae1b

    • SSDEEP

      98304:ihENTkgdAHO1XvXs0Vaw/Q4fXuEXBv6xuDKf1xkA/YwrLfDmt11yXZB7/:hf2HOZx8cBvq3RnzmtjyXZF/

    Score
    10/10
    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks