zgrat | 6badfc713ecea281aecb89bdcddafea95465e94098557bc679cdb85a70d67555 | Triage

Submit
Reports

Overview

overview

Static

static

7

dacdc42049...KI.exe

windows7-x64

dacdc42049...KI.exe

windows10-2004-x64

Sharing

General

Target

dacdc4204974035b495698e1e6de02e0_NEIKI
Size

5.9MB
Sample

240509-dpw95sac23
MD5

dacdc4204974035b495698e1e6de02e0
SHA1

ee3f46e8f9e7539cbee614faaf15af6ec3180f07
SHA256

6badfc713ecea281aecb89bdcddafea95465e94098557bc679cdb85a70d67555
SHA512

cb967f8049017233e24cd5397454593d256c716534fb820cc9e9e9be581807af5993c15711dc91cf611a0cf4759e5c7b07a4e29daf2e67d433ce6e480bcc46e9
SSDEEP

98304:t/TX7JvnzWR4DNnbx5SoesNLWE4iMgFWEWqFGIBGKKDO9uAqB/Ob1R/CHpS2q:tr5niaDVbx5p1Rqi+FqkkrUAqw

Score

10^/10

zgrat rat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dacdc4204974035b495698e1e6de02e0_NEIKI.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

dacdc4204974035b495698e1e6de02e0_NEIKI.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  dacdc4204974035b495698e1e6de02e0_NEIKI
- Size
  
  5.9MB
- MD5
  
  dacdc4204974035b495698e1e6de02e0
- SHA1
  
  ee3f46e8f9e7539cbee614faaf15af6ec3180f07
- SHA256
  
  6badfc713ecea281aecb89bdcddafea95465e94098557bc679cdb85a70d67555
- SHA512
  
  cb967f8049017233e24cd5397454593d256c716534fb820cc9e9e9be581807af5993c15711dc91cf611a0cf4759e5c7b07a4e29daf2e67d433ce6e480bcc46e9
- SSDEEP
  
  98304:t/TX7JvnzWR4DNnbx5SoesNLWE4iMgFWEWqFGIBGKKDO9uAqB/Ob1R/CHpS2q:tr5niaDVbx5p1Rqi+FqkkrUAqw
Score

10^/10

zgrat rat
- Detect ZGRat V1
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- .NET Reactor proctector
  Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy