General

  • Target

    Zeus V4.1.exe

  • Size

    55.1MB

  • Sample

    250125-dxfblatjhv

  • MD5

    61923e92e3a6f77f0f59b4d23e49ca9a

  • SHA1

    efb580a0f90a83a50f125a98099fbdee1139e59e

  • SHA256

    3f2ab81fb3ec21cc4b1a3d8b0875a1c95ff9e4108ab56589fd0bd8885f79251b

  • SHA512

    a8457c922781a3d0d7150ff20ef41e582703db66deaf57ed57aa167c3130830fd5ad2ee8c4640c17c7aa8929ffd1241fe33a525af3f2e1bb9c0342f92209a04b

  • SSDEEP

    786432:8O/THodHYAG0JEBHF+RiOuBgC+8WYbVpRk+PqeuuP76+rfbN20wSPY5E4L+F/P:3/rod4AOFKiOfC+8WydVPe+12hrn

Score
7/10

Malware Config

Targets

    • Target

      Zeus V4.1.exe

    • Size

      55.1MB

    • MD5

      61923e92e3a6f77f0f59b4d23e49ca9a

    • SHA1

      efb580a0f90a83a50f125a98099fbdee1139e59e

    • SHA256

      3f2ab81fb3ec21cc4b1a3d8b0875a1c95ff9e4108ab56589fd0bd8885f79251b

    • SHA512

      a8457c922781a3d0d7150ff20ef41e582703db66deaf57ed57aa167c3130830fd5ad2ee8c4640c17c7aa8929ffd1241fe33a525af3f2e1bb9c0342f92209a04b

    • SSDEEP

      786432:8O/THodHYAG0JEBHF+RiOuBgC+8WYbVpRk+PqeuuP76+rfbN20wSPY5E4L+F/P:3/rod4AOFKiOfC+8WydVPe+12hrn

    Score
    7/10
    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks