General

  • Target

    3c19e7ee4e2ae95988c6ba9b2842dfb7b6db428ea670d3bc7fa1a6ef33931230

  • Size

    341KB

  • Sample

    240504-2cgkxsdd41

  • MD5

    fb24ea8307ddfd29e06e5cecf437d8f5

  • SHA1

    79f03f7b084e9f7ed6116d388fc6d0826547c08d

  • SHA256

    3c19e7ee4e2ae95988c6ba9b2842dfb7b6db428ea670d3bc7fa1a6ef33931230

  • SHA512

    426acc0d54f91da509e7c3ae5e41f7bc7c02af77c8cf8a0eb9c92bb579f6f1422d910b9308eb1cd03d735d78e97a570f23e345de3fc9fa6a870a852afd25c658

  • SSDEEP

    6144:8KGBNCt7lNaAzQ9Ctbr6kELsVl0dVSoNJICBAnsT+hZkNv:8KeNInaAmCtbrLFrw56nsTmkN

Malware Config

Targets

    • Target

      3c19e7ee4e2ae95988c6ba9b2842dfb7b6db428ea670d3bc7fa1a6ef33931230

    • Size

      341KB

    • MD5

      fb24ea8307ddfd29e06e5cecf437d8f5

    • SHA1

      79f03f7b084e9f7ed6116d388fc6d0826547c08d

    • SHA256

      3c19e7ee4e2ae95988c6ba9b2842dfb7b6db428ea670d3bc7fa1a6ef33931230

    • SHA512

      426acc0d54f91da509e7c3ae5e41f7bc7c02af77c8cf8a0eb9c92bb579f6f1422d910b9308eb1cd03d735d78e97a570f23e345de3fc9fa6a870a852afd25c658

    • SSDEEP

      6144:8KGBNCt7lNaAzQ9Ctbr6kELsVl0dVSoNJICBAnsT+hZkNv:8KeNInaAmCtbrLFrw56nsTmkN

    • Detect ZGRat V1

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Detects executables packed with ConfuserEx Mod

MITRE ATT&CK Matrix

Tasks