privateloader | e65221a912bb1dab1dfd34ee6cd79799f6ea96a3c5fc627ce363feb56ff7743e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

Screen rec...M.webm

windows10-2004-x64

7

Screen rec...M.webm

windows11-21h2-x64

Sharing

General

Target

Screen recording 2024-05-03 11.42.37 AM.webm
Size

815KB
Sample

240503-tfrw3aaf6v
MD5

4d028acdd7bf7c8855ca9a8bee7d916e
SHA1

34b387f8b2ef332170e27d3621af7873b5b37306
SHA256

e65221a912bb1dab1dfd34ee6cd79799f6ea96a3c5fc627ce363feb56ff7743e
SHA512

6d6c7a4ab11e9c5409c0f96aac565c2d5c36116cd2ca18df6f5439b42d94d6a64e6ffa5fc63e891d8624256ed5f55c6885190b5d07678e0a732bcdf059b385e9
SSDEEP

24576:iWtq99jUIVaN+oBphkq2BlwwLCBX3/7FAwJB1XA0M2Gb8:iWsPUIO+oBKlwwLCBXTmwJfTMLI

Score

10^/10

privateloader loader

Static task

static1

Behavioral task

behavioral1

Sample

Screen recording 2024-05-03 11.42.37 AM.webm

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

1800 seconds

Behavioral task

behavioral2

Sample

Screen recording 2024-05-03 11.42.37 AM.webm

Resource

win11-20240419-en

privateloader loader

windows11-21h2-x64

17 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Screen recording 2024-05-03 11.42.37 AM.webm
- Size
  
  815KB
- MD5
  
  4d028acdd7bf7c8855ca9a8bee7d916e
- SHA1
  
  34b387f8b2ef332170e27d3621af7873b5b37306
- SHA256
  
  e65221a912bb1dab1dfd34ee6cd79799f6ea96a3c5fc627ce363feb56ff7743e
- SHA512
  
  6d6c7a4ab11e9c5409c0f96aac565c2d5c36116cd2ca18df6f5439b42d94d6a64e6ffa5fc63e891d8624256ed5f55c6885190b5d07678e0a732bcdf059b385e9
- SSDEEP
  
  24576:iWtq99jUIVaN+oBphkq2BlwwLCBX3/7FAwJB1XA0M2Gb8:iWsPUIO+oBKlwwLCBXTmwJfTMLI
Score

10^/10

privateloader loader
- PrivateLoader
  PrivateLoader is a downloader sold as a pay-per-install malware distribution service.
  loader privateloader
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

privateloaderloader

© 2018-2025

Terms | Privacy