Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

64459a4abc...63.exe

windows7-x64

10

64459a4abc...63.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    64459a4abcf3bafd523327c46f498663.bin

  • Size

    71.6MB

  • Sample

    240111-c67lrseab7

  • MD5

    64459a4abcf3bafd523327c46f498663

  • SHA1

    20b91b4aaf96ac34bcc7a80c9083846109c50c61

  • SHA256

    20824f7516916057913e5b3be10c28aa877c2dc633ceeb4b37194f3c33722df6

  • SHA512

    66bef9c6fddf89af9d0e7264e874cef7cd346ce6615c46ad2b924bf466cfd0133bc9e6fd1eaba629e063a48972b3230a5ea9399c621ac218e480fb0d4f199f16

  • SSDEEP

    1572864:lA4/4rzOchPlW3thGYrCvgp6Y6GAS+vSW2G1hFlAnyeCo7:dkqcdlWdkeTOzS+vZ9/FlAyeCo7

Score
10/10
iratainfostealerrattrojan

Malware Config

Targets

    • Target

      64459a4abcf3bafd523327c46f498663.bin

    • Size

      71.6MB

    • MD5

      64459a4abcf3bafd523327c46f498663

    • SHA1

      20b91b4aaf96ac34bcc7a80c9083846109c50c61

    • SHA256

      20824f7516916057913e5b3be10c28aa877c2dc633ceeb4b37194f3c33722df6

    • SHA512

      66bef9c6fddf89af9d0e7264e874cef7cd346ce6615c46ad2b924bf466cfd0133bc9e6fd1eaba629e063a48972b3230a5ea9399c621ac218e480fb0d4f199f16

    • SSDEEP

      1572864:lA4/4rzOchPlW3thGYrCvgp6Y6GAS+vSW2G1hFlAnyeCo7:dkqcdlWdkeTOzS+vZ9/FlAyeCo7

    Score
    10/10
    iratainfostealerrattrojan

    • Irata

      Irata is an Iranian remote access trojan Android malware first seen in August 2022.

      trojaninfostealerratirata

    • Irata payload

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks