Overview

overview

10

Static

static

1

ForMyFriends.rar

windows7-x64

10

ForMyFriends.rar

windows10-2004-x64

3

Resubmissions

05-05-2024 22:14

240505-15wpwafd5z 10

05-05-2024 22:10

240505-13wbbsac76 7

05-05-2024 22:10

240505-13jbrsfc8x 3

05-05-2024 22:06

240505-11kf2sfc4w 8

05-05-2024 22:06

240505-1z6b5aab93 3

05-05-2024 21:58

240505-1vskgaaa72 7

05-05-2024 21:56

240505-1tfvaaaa42 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ForMyFriends.rar

  • Size

    368KB

  • Sample

    240505-15wpwafd5z

  • MD5

    e5dffe249ace4087f23b2b20eea988a5

  • SHA1

    9622701158cd5defc558b2c78b3281ce26d42eaa

  • SHA256

    7c419b375dff5ab052c86131a714a80b5506f78cfbba3fd7b990afc0a6ff4110

  • SHA512

    466354de558125d256064abc7b5b7fb7ddb2293be32accb577b31b08c779769a839eae521dd17642b041c150fd3acc4abeea66300c9a9a083b0bad401bfb5e41

  • SSDEEP

    6144:vtX3fnGv4ndmVfh9zppZI6w/ub1OGjjpsV9gBm1Z6CiZE3+WdGqLiqW:vtXPn9nUVfh9zy6w/uN6gBi2E3+e+N

Score
10/10
zgratrat

Malware Config

Targets

    • Target

      ForMyFriends.rar

    • Size

      368KB

    • MD5

      e5dffe249ace4087f23b2b20eea988a5

    • SHA1

      9622701158cd5defc558b2c78b3281ce26d42eaa

    • SHA256

      7c419b375dff5ab052c86131a714a80b5506f78cfbba3fd7b990afc0a6ff4110

    • SHA512

      466354de558125d256064abc7b5b7fb7ddb2293be32accb577b31b08c779769a839eae521dd17642b041c150fd3acc4abeea66300c9a9a083b0bad401bfb5e41

    • SSDEEP

      6144:vtX3fnGv4ndmVfh9zppZI6w/ub1OGjjpsV9gBm1Z6CiZE3+WdGqLiqW:vtXPn9nUVfh9zy6w/uN6gBi2E3+e+N

    Score
    10/10
    zgratrat

    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks