Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

MeatSpin [Boost].exe

windows7-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MeatSpin [Boost].exe

  • Size

    2.3MB

  • Sample

    230508-rgzl7acg6s

  • MD5

    b94d094193f9872a0738f5b36a2761e0

  • SHA1

    0c3a87f8efd8b4c12e521f6b12b0942d62de786e

  • SHA256

    271a54ee189e307b6df94afb91151aed1bfc4dff8496b5b63ff2be69c3aedda2

  • SHA512

    1c321bb49060590cd5de5e86cafdafddd1d6efff51e23ffabba34a89944eee76db289217ef90f0a18a4d93fbacdefd16479e5151277151e630a4b39a2fa9833a

  • SSDEEP

    49152:lSFRQJZgE5mvRR4m7oP+In/od5NVf42Pbf0J+H/4If2KzhRvsUT0QyF1KlpV15FR:lyRQJ75ORn7o2InurA2PocbfzhRkUQQD

Score
10/10
xwormrattrojan

Malware Config

Extracted

Family

xworm

C2

classic-lovers.at.ply.gg:11647

Attributes
  • install_file

    winlogon.exe

Targets

    • Target

      MeatSpin [Boost].exe

    • Size

      2.3MB

    • MD5

      b94d094193f9872a0738f5b36a2761e0

    • SHA1

      0c3a87f8efd8b4c12e521f6b12b0942d62de786e

    • SHA256

      271a54ee189e307b6df94afb91151aed1bfc4dff8496b5b63ff2be69c3aedda2

    • SHA512

      1c321bb49060590cd5de5e86cafdafddd1d6efff51e23ffabba34a89944eee76db289217ef90f0a18a4d93fbacdefd16479e5151277151e630a4b39a2fa9833a

    • SSDEEP

      49152:lSFRQJZgE5mvRR4m7oP+In/od5NVf42Pbf0J+H/4If2KzhRvsUT0QyF1KlpV15FR:lyRQJ75ORn7o2InurA2PocbfzhRkUQQD

    Score
    10/10
    xwormrattrojan

    • Xworm

      Xworm is a remote access trojan written in C#.

      trojanratxworm

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks