Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

a665cd40ef...36.zip

macos-10.15-amd64

1

Payload/XA...2x.png

macos-10.15-amd64

1

Payload/XA...lt.png

macos-10.15-amd64

1

Payload/XA...2x.png

macos-10.15-amd64

1

Payload/XA....plist

macos-10.15-amd64

1

Payload/XA...kgInfo

macos-10.15-amd64

1

Payload/XA....plist

macos-10.15-amd64

1

Payload/XA...gs.png

macos-10.15-amd64

1

Payload/XA...XAgent

macos-10.15-amd64

1

Payload/XA....xcent

macos-10.15-amd64

1

Payload/XA...es.xml

macos-10.15-amd64

1

Payload/XA...trings

macos-10.15-amd64

1

Payload/XA...-3.nib

macos-10.15-amd64

1

Payload/XA....plist

macos-10.15-amd64

1

Payload/XA...-2.nib

macos-10.15-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a665cd40efaca89e9257d083328e13446428281d133895f984e847d93634e736

  • Size

    320KB

  • Sample

    230317-nw8xmaaa6t

  • MD5

    453525777e095d888039d9313284219d

  • SHA1

    05298a48e4ca6d9778b32259c8ae74527be33815

  • SHA256

    a665cd40efaca89e9257d083328e13446428281d133895f984e847d93634e736

  • SHA512

    6ca1ad65d377720f4a40b8381cac97d8b73cbf3cbdecd59f57db398f30b4e8ea120ff7a12087b7be8db88363efcbc1999b6ed4e59e90fd4be0855b6ec1173a36

  • SSDEEP

    6144:3qVu40R5IzXIgxtP2miGQBDZ48sF3KYyuoHGkgSd:t40zAXI2tP2/DZ40YU

Score
1/10
macos

Malware Config

Targets

    • Target

      a665cd40efaca89e9257d083328e13446428281d133895f984e847d93634e736

    • Size

      320KB

    • MD5

      453525777e095d888039d9313284219d

    • SHA1

      05298a48e4ca6d9778b32259c8ae74527be33815

    • SHA256

      a665cd40efaca89e9257d083328e13446428281d133895f984e847d93634e736

    • SHA512

      6ca1ad65d377720f4a40b8381cac97d8b73cbf3cbdecd59f57db398f30b4e8ea120ff7a12087b7be8db88363efcbc1999b6ed4e59e90fd4be0855b6ec1173a36

    • SSDEEP

      6144:3qVu40R5IzXIgxtP2miGQBDZ48sF3KYyuoHGkgSd:t40zAXI2tP2/DZ40YU

    Score
    1/10
    behavioral1

    • Target

      Payload/XAgent.app/[email protected]

    • Size

      6KB

    • MD5

      eb53170000f55cfd4c20437d62cad812

    • SHA1

      0fc4934b79870efdb26ba1ca0af3fa8ebabc7a28

    • SHA256

      a8235e2e1f67ef95f6f26fd303ea3108c898e37dea84809b38f257b5e75e6915

    • SHA512

      b2854ed6f5093137b978a6c93524386d5c3ed788ebfd60869f044d74508ad92d1611652dd3a479eeb4ba10ca3215fddb5c24c542eaa39cd1870abf463915fc9b

    • SSDEEP

      96:VuRIiQcBhkKXM8hFqGZkIdMOSjuG/pJlT:sHVi+kOSjuG/BT

    Score
    1/10
    behavioral2

    • Target

      Payload/XAgent.app/Default.png

    • Size

      3KB

    • MD5

      871ef21430c26638b269025cd1df7f18

    • SHA1

      83854955463ec4a94d49549d4f8ab44acde68fd7

    • SHA256

      efeb2b9113ee6295709746e3ec8940c1cf23c8ce84acda7fa69fb3de022f6be2

    • SHA512

      00c18b4acd7e27305b39cd8275112451324ee2ec7be0f23be3cb82d99bb06959e6f81d29290ce6fddc308367d1f576b92a7b469c8ea826c98f30bb2d41aed731

    Score
    1/10
    behavioral3

    • Target

      Payload/XAgent.app/[email protected]

    • Size

      6KB

    • MD5

      91c3f2a15fe0f2d0b9ff04a00c04ccca

    • SHA1

      7fe7216da943fdc8341ba473b0e3dba475184008

    • SHA256

      2eb2c7ad3a1db6359841124a3e47c2da05ebcf10e94001ad8c98468e48438775

    • SHA512

      4225909e01871fdc2ddcb0d3893ea12f3327206e551958ea527aeec6ac0e3c5c422ce4327cf9648b01ee8fbd9f75f5fc84d5744e1f7c8cfc7d378d083a392813

    • SSDEEP

      48:VRIwY19T76QChD9hkKiX4v8M8hF9sEvWnW7ZkId/vUcE/60bTifY7:VRIiQcBhkKiM8hFq0ZkIdUzS0K6

    Score
    1/10
    behavioral4

    • Target

      Payload/XAgent.app/Info.plist

    • Size

      1KB

    • MD5

      c1799671e4b1ba7a97f7fd895abaa750

    • SHA1

      920b75e31e8b26d8a2b1a3db201d679a430e3b51

    • SHA256

      10a723d87b0c9a29a4c7f6dc8ffeb78f597a967acc58a254ae8a637753f437f2

    • SHA512

      dae3cc5276da098caa4e84cba9b734b1bcad5ca0e7badb62d5458993f5d215e1a98b82b0660cc963baddea3d9bc0668de507da9d346f276628afa8ed41c634ba

    Score
    1/10
    behavioral5

    • Target

      Payload/XAgent.app/PkgInfo

    • Size

      8B

    • MD5

      23b7d7d024abb0f558420e098800bf27

    • SHA1

      9f9eea0cfe2d65f2c3d6b092e375b40782d08f31

    • SHA256

      82502191c9484b04d685374f9879a0066069c49b8acae7a04b01d38d07e8eca0

    • SHA512

      f77d501528dd0ced155c80406cfbee38d5d3649b64d2a9324f3d6cee39491eb8f54cdebae49c6e21a20d2309d8fae1b01c41631224811e73483db25a2695738c

    Score
    1/10
    behavioral6

    • Target

      Payload/XAgent.app/ResourceRules.plist

    • Size

      150B

    • MD5

      343655cf7ac69ec78afea2e00423b7d6

    • SHA1

      77f6e5da222ac70384e08056023c832d7255c0ba

    • SHA256

      a35932ed4b21efa85742016317340e6b3764d62e3485f91554030fcb43a6f1bb

    • SHA512

      f15bbc7d001b75384923d4f7810cd57877e82410cf448e8e739ba86d60bdf87a4fbeeb945952a22c87eebad73ebb72705cc9f3eb8d88e858cb111cfd330344ee

    Score
    1/10
    behavioral7

    • Target

      Payload/XAgent.app/Settings.png

    • Size

      10KB

    • MD5

      7ef82239427e594cdbf64b83c6deefd1

    • SHA1

      a7b37fa3b1ed9db74f2d9c6bcfe2901a76a1ea20

    • SHA256

      bcfe4d6733d4a37ab827eff9b9992b5772b9c4875926d07247810de1e38dc0b7

    • SHA512

      10c29ff4dd0c17106c493f482489a95d8e5f4e56dfeedba51e671a3efe5b394169aae31a28f2e48f6410657c5967e9cb21002e739a8a48ccb58d03aeded10ec3

    • SSDEEP

      192:66Vxu1Z142EUcmAOfaE4qH8GgHXmdqqttt+:66Voz1Km0EbHdMWtt+

    Score
    1/10
    behavioral8

    • Target

      Payload/XAgent.app/XAgent

    • Size

      280KB

    • MD5

      6aea849846dd9f613970d0ea370e8a68

    • SHA1

      4b8f42678064666965936048430afdb15a51a82b

    • SHA256

      af30f7297d222453aa2a582dbc7dd9fdc6295cfe32d54228d461148684794a2a

    • SHA512

      f6e4931895bb0d07b23ccfc907e36dddc6ce1d723d887f4ca7f6d47c8aacb929b967ae1a72fde73b9410f0205ab0768b2adaecac37f5f1a795e6b8929ee2a479

    • SSDEEP

      6144:440R5uzXIgntP2miGQBDh4CsP3kYyuouGk:440zaXIutP2/Dh4mY

    Score
    1/10
    behavioral9

    • Target

      Payload/XAgent.app/XAgent.xcent

    • Size

      316B

    • MD5

      c3a90ef88350ff2f1fdf8687c75b79c6

    • SHA1

      37a91e815e2863070fcb3244bf612233d8f78d82

    • SHA256

      adbd702f7ceb80c44bce882677d3b9ba002843970bfe9158104069b471486005

    • SHA512

      a1d60d49699b166f5b069f4f6cd9c9d315c56350816f0e830f7f7ac8b49453f657ffaab3dbd13d1c5caa05af6723f7f3609066e21546a1ed18daa154f2c01d91

    Score
    1/10
    behavioral10

    • Target

      Payload/XAgent.app/_CodeSignature/CodeResources

    • Size

      4KB

    • MD5

      a454a3fb47ce064ab6be6adfa17a6622

    • SHA1

      931f84c08d3ad2f277e114a6782dca2d1c882d30

    • SHA256

      e43803aa01c08d0c46abe5bb177a887e13b0adde1ad9d8209bea7a4ccf446faa

    • SHA512

      4509813d779e1974007fe58bb1e75a42eeb28f1c8331092baa39fd81b4d1a71766f472329a0ff8fddcc8dd51c3de8849f54d2ec00947b45bdc334fee9331e4b3

    • SSDEEP

      96:Cy4V60qgNN/qrI47CAfUE93V601N/qrI47CAfUE9li/ndLDzFRioQsJvy:XEyEcCwnxyEcCwnEDzu

    Score
    1/10
    behavioral11

    • Target

      Payload/XAgent.app/en.lproj/InfoPlist.strings

    • Size

      42B

    • MD5

      ce7f5b3d4bfc7b4b0da6a06dccc515f2

    • SHA1

      ce657a52a052a3aaf534ecfbf7cbdde4ee334c10

    • SHA256

      9261ecceda608ef174256e5fdc774c1e6e3dcf533409c1bc393d490d01c713f1

    • SHA512

      db9de6afa0e14c347aa0988a985b8a453ef133a2413c03bae0fab48bda34d4f9a488db104837a386bb65c393e8f11b1ed4856b211c1c186423649c147d6aabfb

    Score
    1/10
    behavioral12

    • Target

      Payload/XAgent.app/en.lproj/MainStoryboard.storyboardc/2-view-3.nib

    • Size

      1KB

    • MD5

      62d103faf6ead0252a43e85bf7acb6e4

    • SHA1

      da61a5b81bba95d46dce27203b62325ca00b33a0

    • SHA256

      3f4896f7610d27eafcd0777ca257efc7b3d1d08b7d2aae4feae24a1ded6a3706

    • SHA512

      e7f8d634a7651894d505857b7d4861a0bd58de5a9bdfb808cd1267d4eda755e018ee57c86361d81837d5cb852af3e7ff68ba638f617bed49a6803f02b4cb078e

    Score
    1/10
    behavioral13

    • Target

      Payload/XAgent.app/en.lproj/MainStoryboard.storyboardc/Info.plist

    • Size

      231B

    • MD5

      41db55ce39f74832e4bed282663885f0

    • SHA1

      1cfa294da88a76b633d45457220b1bf2efd79b45

    • SHA256

      06d816b38bf161e59e1fda335e7ca2ca7711a210b674d10a62e5bcd53b75632f

    • SHA512

      1fd78d1f9b12a4f197d698e23558fc4810b99a74b61ae3a916edacb7f4312f6ccd334857634aaa61a913442b7db1d75b87739b7a3eb59f42a309a1211b47ba43

    Score
    1/10
    behavioral14

    • Target

      Payload/XAgent.app/en.lproj/MainStoryboard.storyboardc/UIViewController-2.nib

    • Size

      889B

    • MD5

      cf883dc64ad5bfe17bef28226eaea46f

    • SHA1

      4b7c1bbf469a4638793e0d962ee3e86d9753c42d

    • SHA256

      e5064d557c0b11ff72a6019e04e4a2ff287917d0a4a4023645096fd05f41a8ba

    • SHA512

      689c19a44b834744f3985912ad87410bf0ec423db765505167a1215a23025441e36c8b183b240298d397a8436bf25702e1344befeea721b37dcd6c4fb38885d4

    Score
    1/10
    behavioral15

MITRE ATT&CK Matrix

Tasks