Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

download-filearr.exe

windows7-x64

10

download-filearr.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    download-filearr.exe

  • Size

    63KB

  • Sample

    231021-217r1sce4v

  • MD5

    fb63ddb5e6b526c7bb1c0559995819ff

  • SHA1

    7a142ffb48e65fd4ce71fafee8b75ba2c057f25a

  • SHA256

    98155c900f39faac6a42133850329caabc8bf4ebcc90d5037f481aaa86c7240f

  • SHA512

    ddb24a9091668be098ac5c4727351bb8d5e502aac4a42590d0cfeaa45991e7699b415d830270624a54e64487c010e4ea3c5d1310863e936f3ea4b4bd51c124a7

  • SSDEEP

    1536:KTWI8rSfQ/9Tc1s21vGtoMbbPwb6TjxkscpqKmY7:KTWLrSY/d6thGuMbbPTjx73z

Score
10/10
asyncratdefaultrat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

Mutex

DcRatMutex_qwqdanchun

Attributes
  • delay

    1

  • install

    false

  • install_file

    svchost.exe

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      download-filearr.exe

    • Size

      63KB

    • MD5

      fb63ddb5e6b526c7bb1c0559995819ff

    • SHA1

      7a142ffb48e65fd4ce71fafee8b75ba2c057f25a

    • SHA256

      98155c900f39faac6a42133850329caabc8bf4ebcc90d5037f481aaa86c7240f

    • SHA512

      ddb24a9091668be098ac5c4727351bb8d5e502aac4a42590d0cfeaa45991e7699b415d830270624a54e64487c010e4ea3c5d1310863e936f3ea4b4bd51c124a7

    • SSDEEP

      1536:KTWI8rSfQ/9Tc1s21vGtoMbbPwb6TjxkscpqKmY7:KTWLrSY/d6thGuMbbPTjx73z

    Score
    10/10
    asyncratdefaultrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks