Overview

overview

10

Static

static

10

940-2-0x00...ry.exe

windows7-x64

940-2-0x00...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    940-2-0x0000000000400000-0x000000000044A000-memory.dmp

  • Size

    296KB

  • MD5

    d21bbec252281d521a5fc0d9a1e8e7a5

  • SHA1

    ae2bd8e9e4c11b1d8df442a3d97065ad9fac53e3

  • SHA256

    441426e67e8268f67e423eee7f4f2fe972d18f562934d43d6ded89fc795f89a7

  • SHA512

    97c2c48d509c44a8ca0eba69dfff59d48415caeb8f4282da06f185d1bfdedb5b084056c3aaf082cbf391a6895948343fb055de4de035c2b6608ebaa6ba6f7c97

  • SSDEEP

    3072:UcqdvDlxdVkgauXKIIsWSiu1eWvjWu/8OJzehzmSO9jNXOqN+K3VJLlgUnMF2USj:UcqtD/knuZpl18OVSud13TO2gw0rU

Score
10/10
redlinezgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • RedLine payload 1 IoCs
  • Redline family
    redline
  • Zgrat family
    zgrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 940-2-0x0000000000400000-0x000000000044A000-memory.dmp
    .exe windows:4 windows x86 arch:x86

    Password: infected


    Headers

    Sections