General
-
Target
cockroach-on-desktop-1.1-installer_R04-tM1.exe
-
Size
1.7MB
-
Sample
240506-t69vkadf39
-
MD5
d2d704d41f42e5818225ff90dafc1d82
-
SHA1
36e4dc864509a3c321cbbf156006afd2917a5a0d
-
SHA256
10081bafe6ae40fa52e127f22eb09a316be5c9c481d5bc5662f9470cca76eb71
-
SHA512
90f99c1a1ce5a9f866e0abc85dfbdd53ce4086c45690040187efded7ead9be872e8266618c707466bcdf616d0b2863a1083d38092ea870ca5b3b99e124c39381
-
SSDEEP
24576:p7FUDowAyrTVE3U5F/pAZWZADi/VIX7rofRHYz2iVqnnxFr62k7kQ7:pBuZrEUbA+2XQpHm2iVyp
Malware Config
Targets
-
-
Target
cockroach-on-desktop-1.1-installer_R04-tM1.exe
-
Size
1.7MB
-
MD5
d2d704d41f42e5818225ff90dafc1d82
-
SHA1
36e4dc864509a3c321cbbf156006afd2917a5a0d
-
SHA256
10081bafe6ae40fa52e127f22eb09a316be5c9c481d5bc5662f9470cca76eb71
-
SHA512
90f99c1a1ce5a9f866e0abc85dfbdd53ce4086c45690040187efded7ead9be872e8266618c707466bcdf616d0b2863a1083d38092ea870ca5b3b99e124c39381
-
SSDEEP
24576:p7FUDowAyrTVE3U5F/pAZWZADi/VIX7rofRHYz2iVqnnxFr62k7kQ7:pBuZrEUbA+2XQpHm2iVyp
Score10/10-
Detect ZGRat V1
-
ZGRat
ZGRat is remote access trojan written in C#.
-
Drops file in Drivers directory
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Downloads MZ/PE file
-
Drops file in System32 directory
-