Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

0741281320...4a.exe

windows7-x64

10

0741281320...4a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0741281320f8c5b6fe34468d71a6c31722d622fce835f6e0c97c0fce04ef8d4a

  • Size

    1.8MB

  • Sample

    240308-2xte8aad2x

  • MD5

    614c5b7da79949abd7faf7a31210a8cd

  • SHA1

    81e4d1c36a4fd47b305382a239ee9583fcbf3d95

  • SHA256

    0741281320f8c5b6fe34468d71a6c31722d622fce835f6e0c97c0fce04ef8d4a

  • SHA512

    f58f466e4cbd761446688a1f93575c902a05adbcbae385afefbaa5f9eb12503a2c2d8a5b98f5c2b09b10b0c07818b1aa8266a0723912a62b2f8c89b9cced9e6f

  • SSDEEP

    49152:Pi39+084E6W4W8Vm/ht49aXZmMA8D/dPU6vG:C+HVb4W8QD49unDpPU6O

Score
10/10
asyncratdefaultpersistencerat

Malware Config

Extracted

Family

asyncrat

Botnet

Default

C2

1.err.line.pm:4449

Mutex

glzznzesxsoyn

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      0741281320f8c5b6fe34468d71a6c31722d622fce835f6e0c97c0fce04ef8d4a

    • Size

      1.8MB

    • MD5

      614c5b7da79949abd7faf7a31210a8cd

    • SHA1

      81e4d1c36a4fd47b305382a239ee9583fcbf3d95

    • SHA256

      0741281320f8c5b6fe34468d71a6c31722d622fce835f6e0c97c0fce04ef8d4a

    • SHA512

      f58f466e4cbd761446688a1f93575c902a05adbcbae385afefbaa5f9eb12503a2c2d8a5b98f5c2b09b10b0c07818b1aa8266a0723912a62b2f8c89b9cced9e6f

    • SSDEEP

      49152:Pi39+084E6W4W8Vm/ht49aXZmMA8D/dPU6vG:C+HVb4W8QD49unDpPU6O

    Score
    10/10
    asyncratdefaultpersistencerat

    • AsyncRat

      AsyncRAT is designed to remotely monitor and control other computers written in C#.

      ratasyncrat

    • Async RAT payload

      rat

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks