zgrat | e522f402bd19d48588dfe55c5178f82d4f3e365817fdd3a30de52c09926ff81e | Triage

Submit
Reports

Overview

overview

Static

static

Beta_0.6.exe

windows7-x64

Beta_0.6.exe

windows10-2004-x64

Sharing

General

Target

Beta_0.6.exe
Size

2.1MB
Sample

240726-cytpya1bnk
MD5

c3ce5141cd6793d20a56d323acaa6723
SHA1

8859b8cea7f5cbef73ddbc8e9070d85ce57b04ec
SHA256

e522f402bd19d48588dfe55c5178f82d4f3e365817fdd3a30de52c09926ff81e
SHA512

a1ea620babd76f54cb6577b405f16ecac1c4d9df79c18b9e3654a8c3fb7902305f85800e44b0ec867da8c5847588276149e5989391da224c0106ccc597f28e43
SSDEEP

49152:31tVLt+HCyVkdgiikpTRKi5hYK2Be/zjc9QPirSqQp/FelB:31nL8Pkr1Km2BcM6PiGdN

Score

10^/10

zgrat discovery rat

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Beta_0.6.exe

Resource

win7-20240708-en

zgrat discovery rat

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

Beta_0.6.exe

Resource

win10v2004-20240709-en

zgrat discovery rat

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  Beta_0.6.exe
- Size
  
  2.1MB
- MD5
  
  c3ce5141cd6793d20a56d323acaa6723
- SHA1
  
  8859b8cea7f5cbef73ddbc8e9070d85ce57b04ec
- SHA256
  
  e522f402bd19d48588dfe55c5178f82d4f3e365817fdd3a30de52c09926ff81e
- SHA512
  
  a1ea620babd76f54cb6577b405f16ecac1c4d9df79c18b9e3654a8c3fb7902305f85800e44b0ec867da8c5847588276149e5989391da224c0106ccc597f28e43
- SSDEEP
  
  49152:31tVLt+HCyVkdgiikpTRKi5hYK2Be/zjc9QPirSqQp/FelB:31nL8Pkr1Km2BcM6PiGdN
Score

10^/10

zgrat discovery rat
- Detect ZGRat V2
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

zgratdiscoveryrat

behavioral2

zgratdiscoveryrat

© 2018-2024

Terms | Privacy