zgrat | 934d3d466a25472f639188ea088a2c01198bdcbe418841cfa65b85cf97f100d5 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...4e.exe

windows7-x64

JaffaCakes...4e.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_65b716d641a1a0f1d4652d4201bde84e
Size

6.6MB
Sample

250107-qsfssavncl
MD5

65b716d641a1a0f1d4652d4201bde84e
SHA1

39b49bb45ad3204daf92fa9d5545a2e8a5f083d9
SHA256

934d3d466a25472f639188ea088a2c01198bdcbe418841cfa65b85cf97f100d5
SHA512

95f37ba7612650b331802cf7a14dfcc544f7d18d479067e156652fd428ce72fe6cdfd41f22dd5a8c81828e182156b34f85f15f31bb587b18633a9ae97bfb75e7
SSDEEP

98304:uhRqWnKpGc6sz3vNJzQLJco5h7D4TEBRmwf76t:cApGc6ojz6TDEaV+t

Score

10^/10

zgrat discovery rat

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_65b716d641a1a0f1d4652d4201bde84e.exe

Resource

win7-20240903-en

zgrat discovery rat

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_65b716d641a1a0f1d4652d4201bde84e.exe

Resource

win10v2004-20241007-en

zgrat discovery rat

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_65b716d641a1a0f1d4652d4201bde84e
- Size
  
  6.6MB
- MD5
  
  65b716d641a1a0f1d4652d4201bde84e
- SHA1
  
  39b49bb45ad3204daf92fa9d5545a2e8a5f083d9
- SHA256
  
  934d3d466a25472f639188ea088a2c01198bdcbe418841cfa65b85cf97f100d5
- SHA512
  
  95f37ba7612650b331802cf7a14dfcc544f7d18d479067e156652fd428ce72fe6cdfd41f22dd5a8c81828e182156b34f85f15f31bb587b18633a9ae97bfb75e7
- SSDEEP
  
  98304:uhRqWnKpGc6sz3vNJzQLJco5h7D4TEBRmwf76t:cApGc6ojz6TDEaV+t
Score

10^/10

zgrat discovery rat
- Detect ZGRat V2
- ZGRat
  ZGRat is remote access trojan written in C#.
  rat zgrat
- Zgrat family
  zgrat
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

zgratdiscoveryrat

behavioral2

zgratdiscoveryrat

© 2018-2025

Terms | Privacy