Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f
-
Size
364KB
-
Sample
221002-g1qhhschbp
-
MD5
480e7e6c7be0a1821c4e763b57443980
-
SHA1
3ff6c922bc738696605689cee0d016a4f51a2189
-
SHA256
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f
-
SHA512
58f88816ac799ab4151ed1c55d6b2012d2c6bc0142acd739b3873e38633fff647d9a4497ae5e24bdc6943fb0832a91c1ae4435aec974eef0cb3557f3ce669b9a
-
SSDEEP
6144:IX/C2VA/SPtTkRhtTaZueKsddg5qvIFUVy60DfIYVbcT3q6SmDGyCdByONZF2GMi:IPCtApSmizdkONZ5d
Static task
static1
Behavioral task
behavioral1
Sample
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f
-
Size
364KB
-
MD5
480e7e6c7be0a1821c4e763b57443980
-
SHA1
3ff6c922bc738696605689cee0d016a4f51a2189
-
SHA256
37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f
-
SHA512
58f88816ac799ab4151ed1c55d6b2012d2c6bc0142acd739b3873e38633fff647d9a4497ae5e24bdc6943fb0832a91c1ae4435aec974eef0cb3557f3ce669b9a
-
SSDEEP
6144:IX/C2VA/SPtTkRhtTaZueKsddg5qvIFUVy60DfIYVbcT3q6SmDGyCdByONZF2GMi:IPCtApSmizdkONZ5d
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-
Suspicious use of SetThreadContext
-