General

  • Target

    https://sivaspastane.com/Notion-x86.msix

  • Sample

    240505-b9lm2aah2w

Score
10/10

Malware Config

Targets

    • Target

      https://sivaspastane.com/Notion-x86.msix

    Score
    10/10
    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Blocklisted process makes network request

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks