zgrat | c402225260a6957be61c61d21b616ab8b05ea54ad7275d03d48058a452336e98 | Triage

Submit
Reports

Overview

overview

Static

static

pdfsuite20.exe

windows10-2004-x64

Sharing

General

Target

pdfsuite20.exe
Size

2.1MB
Sample

240509-c3q5lsgf78
MD5

b19273b509ae959bda415ae05f5a8b0a
SHA1

07c4866abe4a511ec27dd1da58d8a87e8c595e1c
SHA256

c402225260a6957be61c61d21b616ab8b05ea54ad7275d03d48058a452336e98
SHA512

bb04013f2b1d7e3416a74b7cf9ac973d5b4659c46e2c52a182cdc992a86b9ecfc9ea04001b87fb03c73d6275029171dfed92f5f828a7be2bdbfbff8dee5d43fa
SSDEEP

49152:fks2qyONHO7x4VmiooUj7oHMRMDdbsiy91fQPlt:fkDqxNWmmiooUjUH2OU91foT

Score

10^/10

zgrat rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

pdfsuite20.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

60 seconds

Malware Config

Targets

- Target
  
  pdfsuite20.exe
- Size
  
  2.1MB
- MD5
  
  b19273b509ae959bda415ae05f5a8b0a
- SHA1
  
  07c4866abe4a511ec27dd1da58d8a87e8c595e1c
- SHA256
  
  c402225260a6957be61c61d21b616ab8b05ea54ad7275d03d48058a452336e98
- SHA512
  
  bb04013f2b1d7e3416a74b7cf9ac973d5b4659c46e2c52a182cdc992a86b9ecfc9ea04001b87fb03c73d6275029171dfed92f5f828a7be2bdbfbff8dee5d43fa
- SSDEEP
  
  49152:fks2qyONHO7x4VmiooUj7oHMRMDdbsiy91fQPlt:fkDqxNWmmiooUjUH2OU91foT
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy