Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

888_RAT_1....nd.exe

windows7-x64

7

888_RAT_1....nd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    yes.7z

  • Size

    37.3MB

  • Sample

    250117-wd21csypcq

  • MD5

    028d808e644a4499b62cadb5106f54d8

  • SHA1

    58fc0d31ded82d8fd6d3aac9cefd2fbdd7236df8

  • SHA256

    dd2c7f46e8f070fcc9ef66271e2741d07bf2ba59c40790751d9fa32b8296881d

  • SHA512

    0368eeb8af3fb1a6e0f7f66c86fb2d91a5fd1393c30f2ad8a042d771fc2e77fac6c35cbe288cc23944ff6f1a0c9e5c84202f7f4ef9adaa8ce99d4d72610a6b39

  • SSDEEP

    786432:6bAVFSMAPH/sldSJUo5c67RlaBsyvIY5vtGPlMO8:6bAVg/PHsoq60swh5gm7

Score
10/10
888ratdiscoveryinfostealerrattrojanupx

Malware Config

Targets

    • Target

      888_RAT_1.0.9 Cracked by Shark M!nd.exe

    • Size

      22.0MB

    • MD5

      32004e656640aad1672f0ee98434bc3c

    • SHA1

      d665b4e03e9d75f87079d65cff791147b7ee6e4f

    • SHA256

      beb837e8832f27dacfd3719cf617310f1b9e74badbfca8705ecafce3ed5e6a33

    • SHA512

      1cd55008d6352469a937f168d6d72cfd202d81c24a6be4c6256a4c73c576577aefe8da912c5cb09e12f12a58e46f99381fa9834b58bc356e0c530908b236785f

    • SSDEEP

      393216:TufwMCigvYFChWbRT5OV7lAUl+9o0okMLeDuq3+QAk5ubWWBwBvJ5wV:aXZgvYYhQDOVPl+9l2+OZuhQwR/

    Score
    10/10
    discoveryupx888ratinfostealerrattrojan

    • 888RAT

      888RAT is an Android remote administration tool.

      trojaninfostealerrat888rat

    • 888Rat family

      888rat

    • Android 888 RAT payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks