Overview

overview

10

Static

static

1

Bitguard_P...ks.zip

windows7-x64

10

Bitguard_P...ks.zip

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Bitguard_Pro_4.4_Cracked_by_31Cracks.zip

  • Size

    8.1MB

  • Sample

    241021-xntbmstcmj

  • MD5

    ae74146566d2f7a90966ed650859119f

  • SHA1

    d7978e13772877074857d9d5fc5d46abff749863

  • SHA256

    27c5032cc5ece6baf23e8f6fd333cd46d1193ea31793ce9c8b4cbd19fd1ff5bd

  • SHA512

    5105cbccdd4df4cc5d1a22871c3fe05e82598069460f140f836a96630644f1a85baf0a55ec51f21f8182254b51af03302a67299909fe68f2309755e7a82ab906

  • SSDEEP

    196608:HV5fUcEm7lBJEcWF35vsVYeSCS3/2dMT9zUmPBVvQzgW:XPEmpBJEh3Z0SCfdaRYzJ

Score
10/10
zgratagilenetdiscoveryrat

Malware Config

Targets

    • Target

      Bitguard_Pro_4.4_Cracked_by_31Cracks.zip

    • Size

      8.1MB

    • MD5

      ae74146566d2f7a90966ed650859119f

    • SHA1

      d7978e13772877074857d9d5fc5d46abff749863

    • SHA256

      27c5032cc5ece6baf23e8f6fd333cd46d1193ea31793ce9c8b4cbd19fd1ff5bd

    • SHA512

      5105cbccdd4df4cc5d1a22871c3fe05e82598069460f140f836a96630644f1a85baf0a55ec51f21f8182254b51af03302a67299909fe68f2309755e7a82ab906

    • SSDEEP

      196608:HV5fUcEm7lBJEcWF35vsVYeSCS3/2dMT9zUmPBVvQzgW:XPEmpBJEh3Z0SCfdaRYzJ

    Score
    10/10
    zgratdiscoveryratagilenet

    • Detect ZGRat V2

    • ZGRat

      ZGRat is remote access trojan written in C#.

      ratzgrat

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks