Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
244beba967d8d33558ef2f2bf831aad8462fa605d2a62a43e8d35a50242e86b7.exe
-
Size
78KB
-
Sample
250205-tejjasvpem
-
MD5
20f8e4e8ecdd696b568cc83791952e10
-
SHA1
4732691dd93ba801f238e261e64ab7a60cc4f78c
-
SHA256
244beba967d8d33558ef2f2bf831aad8462fa605d2a62a43e8d35a50242e86b7
-
SHA512
03683f430258fc1650369dadd61003284eee8bd03805c89a372c542071b05d0c35088f65c75c8f627e69e2a06009ecf15272554788bd07c3f4c3e51eb4b28bd0
-
SSDEEP
1536:LRy5jJLT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti6G9/C1BUJ:LRy5jhE2EwR4uY41HyvYO9/lJ
Malware Config
Targets
-
-
Target
244beba967d8d33558ef2f2bf831aad8462fa605d2a62a43e8d35a50242e86b7.exe
-
Size
78KB
-
MD5
20f8e4e8ecdd696b568cc83791952e10
-
SHA1
4732691dd93ba801f238e261e64ab7a60cc4f78c
-
SHA256
244beba967d8d33558ef2f2bf831aad8462fa605d2a62a43e8d35a50242e86b7
-
SHA512
03683f430258fc1650369dadd61003284eee8bd03805c89a372c542071b05d0c35088f65c75c8f627e69e2a06009ecf15272554788bd07c3f4c3e51eb4b28bd0
-
SSDEEP
1536:LRy5jJLT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti6G9/C1BUJ:LRy5jhE2EwR4uY41HyvYO9/lJ
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-