Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

98c0481540...5b.exe

windows7-x64

10

98c0481540...5b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    98c0481540f85e532be17bff66786fba29ae543bf9d9807e36bc8191c22b195b

  • Size

    78KB

  • Sample

    240910-aq9p3szble

  • MD5

    b93013d2e46816651e98af1654bf489d

  • SHA1

    df9d77cf0fff54df55a3056f1ec00b97087cd602

  • SHA256

    98c0481540f85e532be17bff66786fba29ae543bf9d9807e36bc8191c22b195b

  • SHA512

    af6305a8140448c78432226e6ca0d62491ad4dd6f07494ef88cb8bc3bf0af6a9cb5925ef698c977b0117c9e2860424d34b8a22542612e04a4fefa4432f9e2b03

  • SSDEEP

    1536:Ly58BXT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQtN67h9/YI1MI:Ly58BSyRxvhTzXPvCbW2UEh9/Yk

Score
10/10
metamorpherratdiscoverypersistenceratstealertrojan

Malware Config

Targets

    • Target

      98c0481540f85e532be17bff66786fba29ae543bf9d9807e36bc8191c22b195b

    • Size

      78KB

    • MD5

      b93013d2e46816651e98af1654bf489d

    • SHA1

      df9d77cf0fff54df55a3056f1ec00b97087cd602

    • SHA256

      98c0481540f85e532be17bff66786fba29ae543bf9d9807e36bc8191c22b195b

    • SHA512

      af6305a8140448c78432226e6ca0d62491ad4dd6f07494ef88cb8bc3bf0af6a9cb5925ef698c977b0117c9e2860424d34b8a22542612e04a4fefa4432f9e2b03

    • SSDEEP

      1536:Ly58BXT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQtN67h9/YI1MI:Ly58BSyRxvhTzXPvCbW2UEh9/Yk

    Score
    10/10
    metamorpherratdiscoverypersistenceratstealertrojan

    • MetamorpherRAT

      Metamorpherrat is a hacking tool that has been around for a while since 2013.

      trojanratstealermetamorpherrat

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks