Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
556389fdeca32b5417fa33656de427ed
-
Size
474KB
-
Sample
240112-d8gnsseha9
-
MD5
556389fdeca32b5417fa33656de427ed
-
SHA1
d86c0643d5a41078cf47462918219f84e9cb4b5e
-
SHA256
9fc3f0d5756cce9639d734d17ada931d3c83c20a6479d3ec0ea338d52137e1be
-
SHA512
2cfeac65c5b0154497b0f1092f8f09e6316f9341c9f712bbf55021629b0cdec22686bfd4d47c5edc4bb1aea76385066a203995b05b931ebf5323b14e196febbd
-
SSDEEP
12288:T4Z2/0OI8c2nawCc0O5SzgnvCUsKDi7sxWa:TU2/bawW2XnvTi7s0a
Static task
static1
Behavioral task
behavioral1
Sample
556389fdeca32b5417fa33656de427ed.exe
Resource
win7-20231215-en
Malware Config
Extracted
xloader
2.3
c7jh
frealz.com
janggipay.com
k12paymentceter.com
garnishclub.com
5975199.com
xyzenix.com
khspt.com
tccollection.net
electricscooter.parts
ouhongda.com
soltosoul.love
lentspace.com
mimik33.info
five-minute-diary.com
stanleyguzman.com
davidhidalgo.info
bfcalc.com
app-leadpulse.com
yogaforhumans.com
eaglerockinvest.com
painmanagementcenterofirvne.com
americafazendas.com
virtualmoscow.info
buddhapp.com
savoycannabis.farm
wireddifferentlycanada.com
cheapfloatinghomes.com
wildlifervresort.com
onlyonedeed.com
inovawap.net
adultliteracy.plus
bidentears.com
lumpersunlimited.com
partyfeverbuy.com
rovbookings.com
actorns.com
furnitureandinteriorsspa.com
novasandw.com
mypupalace.com
flightsimkit.com
jlautopartner.com
macrothesis.com
dqkf13.xyz
babycaretalk.com
malvinasargentina.com
kauf7.com
wordmadecinema.com
mrg-shopping.com
funeralplansguide.com
wljyjw.com
casino-slot-gambling.com
capturingparadise.com
sewlonely.com
guatemalasoultravel.com
soymargo.com
themakersfair.com
noithatviettrung.net
journeytomama.com
divvymedia.com
med-obzor.com
sunnyboxstudios.com
golden-road-credit-repair.com
mathcoachisms.com
calluminatireviews.com
bknmarket.com
Targets
-
-
Target
556389fdeca32b5417fa33656de427ed
-
Size
474KB
-
MD5
556389fdeca32b5417fa33656de427ed
-
SHA1
d86c0643d5a41078cf47462918219f84e9cb4b5e
-
SHA256
9fc3f0d5756cce9639d734d17ada931d3c83c20a6479d3ec0ea338d52137e1be
-
SHA512
2cfeac65c5b0154497b0f1092f8f09e6316f9341c9f712bbf55021629b0cdec22686bfd4d47c5edc4bb1aea76385066a203995b05b931ebf5323b14e196febbd
-
SSDEEP
12288:T4Z2/0OI8c2nawCc0O5SzgnvCUsKDi7sxWa:TU2/bawW2XnvTi7s0a
-
Xloader payload
-
Suspicious use of SetThreadContext
-