Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
28ee450d27705494de216537810451e276d9b209798c4b399810afffbb83a82f
-
Size
73KB
-
MD5
312e95b38c337aaddde4f7ab51a556f0
-
SHA1
5ae7f40c71c549e3a8ef6d36fc83da1da35ffa5b
-
SHA256
28ee450d27705494de216537810451e276d9b209798c4b399810afffbb83a82f
-
SHA512
4951e565cad94436a756492950f07add2d96c4749c39fe91b71b267af794247dffb44cde78fba032cae9953bacdd10b508f90fe04b2f009f1de376400caa42a0
-
SSDEEP
1536:oUl0cxm+XpbCNiPMVye9VdQkhDIyH1bf/NP8Ux4Qzc33VclN:oUucxm+XZKiPMVye9VdQgH1bf1Zx4QyO
Score
10/10
Malware Config
Extracted
Family
asyncrat
Version
Venom RAT + HVNC + Stealer + Grabber v6.0.3
Botnet
Default
Mutex
cbohxzpwjkfilgtalwp
Attributes
-
delay
1
-
install
true
-
install_file
dllhost.exe
-
install_folder
%AppData%
-
pastebin_config
https://pastebin.com/raw/uFb6t8Gs
aes.plain
1
C0XHjhFwSLFtUp6dWuu1EIMrq8XXRFJi
Signatures
-
Asyncrat family
-
VenomRAT 1 IoCs
Detects VenomRAT.
-
Venomrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
28ee450d27705494de216537810451e276d9b209798c4b399810afffbb83a82f
Headers
Sections