Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

9c9b3f88b4...c2.exe

windows7-x64

1

9c9b3f88b4...c2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c9b3f88b4a6f0be5596d272c4db4cc2

  • Size

    578KB

  • Sample

    240213-e9a33sag5w

  • MD5

    9c9b3f88b4a6f0be5596d272c4db4cc2

  • SHA1

    2bd7fc6b0e960f4f581481216697071c91c0b2e6

  • SHA256

    c501a5520a40c78e3561e9df6d8c6e348603eba519bf6b6ca80695a9305ecd1e

  • SHA512

    bd3d2d6bbfb9b1d18b908dbd9ed67ae60b9bb8feee74edd38841119695e4547410b4117483cba02ee78617d5181fb43b8c9121d62d5ef5087e86aeefd1b1778e

  • SSDEEP

    12288:29oJNyggfDjjyUcnd78PNc+Ri2VBa4+5YanGv1c:mK0ggbjjmQFckrYP5HnGK

Score
10/10
asyncratscrubloaderrat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

scrubloader

C2

scrubloader.ru:2192

Mutex

DcRatMutex_qwqdanchuncd

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      9c9b3f88b4a6f0be5596d272c4db4cc2

    • Size

      578KB

    • MD5

      9c9b3f88b4a6f0be5596d272c4db4cc2

    • SHA1

      2bd7fc6b0e960f4f581481216697071c91c0b2e6

    • SHA256

      c501a5520a40c78e3561e9df6d8c6e348603eba519bf6b6ca80695a9305ecd1e

    • SHA512

      bd3d2d6bbfb9b1d18b908dbd9ed67ae60b9bb8feee74edd38841119695e4547410b4117483cba02ee78617d5181fb43b8c9121d62d5ef5087e86aeefd1b1778e

    • SSDEEP

      12288:29oJNyggfDjjyUcnd78PNc+Ri2VBa4+5YanGv1c:mK0ggbjjmQFckrYP5HnGK

    Score
    10/10
    asyncratscrubloaderrat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks