General

  • Target

    1e40160ff1f09d7445f2cdcd24104701.bin

  • Size

    1.8MB

  • Sample

    240510-bcnfcshd6v

  • MD5

    1e40160ff1f09d7445f2cdcd24104701

  • SHA1

    c660d302b2941a93c51cd1f857298126a3c0b219

  • SHA256

    f8a7cc2e3e5a8dbfaa11ddb2c1c3286eda1e906dd66c29adc5a9a6c5f7ceed9c

  • SHA512

    ea3b325f2f4a75849a06859fd1f933c38abc425c542c1bd2b8b65abd7aff05a75d07caeb47656a9f699558306cc5fe789bf43cfc2c0676c5bd8d4109b0c015f0

  • SSDEEP

    49152:uGkkhDESYZ24c4W3cs9gIDxH6HMfKZkQ6rQ:uGkkhDE74SR6gGHfy6

Score
10/10

Malware Config

Targets

    • Target

      1e40160ff1f09d7445f2cdcd24104701.bin

    • Size

      1.8MB

    • MD5

      1e40160ff1f09d7445f2cdcd24104701

    • SHA1

      c660d302b2941a93c51cd1f857298126a3c0b219

    • SHA256

      f8a7cc2e3e5a8dbfaa11ddb2c1c3286eda1e906dd66c29adc5a9a6c5f7ceed9c

    • SHA512

      ea3b325f2f4a75849a06859fd1f933c38abc425c542c1bd2b8b65abd7aff05a75d07caeb47656a9f699558306cc5fe789bf43cfc2c0676c5bd8d4109b0c015f0

    • SSDEEP

      49152:uGkkhDESYZ24c4W3cs9gIDxH6HMfKZkQ6rQ:uGkkhDE74SR6gGHfy6

    Score
    10/10
    • Detect ZGRat V1

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks