zgrat | 9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2 | Triage

Submit
Reports

Overview

overview

Static

static

9936a5dc90...f2.exe

windows7-x64

9936a5dc90...f2.exe

windows10-2004-x64

Sharing

General

Target

9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2
Size

1.5MB
Sample

240515-b2w4ssah4v
MD5

ec3d1b3e8ed0c85b1949d331163ab3e6
SHA1

de6b3b824f53c4b924e894b1ea0bd755f2b8eea2
SHA256

9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2
SHA512

743c9d3b2ed616a8aaea6f2e0e78b7081464bf77e65c9bd909246edaa94a3d1a486069045ac33a4c622d622e1ba82ad6e7f55629f3da16fd5976f473f568b1c8
SSDEEP

24576:ypbwfGXMc/tiJA2HAP9IhjLiOOoooS9yqejn1GtCuW1Hz/UciYHYVsk25mw561am:ypbwfGXMc/tiJA2HAP9IhjLiOOoooS95

Score

10^/10

zgrat evasion trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2.exe

Resource

win7-20240419-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2
- Size
  
  1.5MB
- MD5
  
  ec3d1b3e8ed0c85b1949d331163ab3e6
- SHA1
  
  de6b3b824f53c4b924e894b1ea0bd755f2b8eea2
- SHA256
  
  9936a5dc9057a2032a357eae547d1f4048c8d6ec5bbc98eaa8c0aa7243e496f2
- SHA512
  
  743c9d3b2ed616a8aaea6f2e0e78b7081464bf77e65c9bd909246edaa94a3d1a486069045ac33a4c622d622e1ba82ad6e7f55629f3da16fd5976f473f568b1c8
- SSDEEP
  
  24576:ypbwfGXMc/tiJA2HAP9IhjLiOOoooS9yqejn1GtCuW1Hz/UciYHYVsk25mw561am:ypbwfGXMc/tiJA2HAP9IhjLiOOoooS95
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy