Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

4240-17-0x...ry.exe

windows7-x64

4240-17-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4240-17-0x0000000000400000-0x000000000040E000-memory.dmp

  • Size

    56KB

  • Sample

    240515-jla6dsff7y

  • MD5

    41ca9a494d5d0e78cf16159f7fef8472

  • SHA1

    40cb6132c9e9cef0bdadbd840955f77352a9130b

  • SHA256

    aa0f5431f912497089a264ad8002e1fffda72b75a1d9f60601cc979306f2d030

  • SHA512

    0c4b9a6b3e3509ab256aeeabafa4e878865c000a06197bfd9705ac1da7289504b3640d73bfd523c98e80a3109c3ec5dab4d287b8609f215badcfb32fa512aaa9

  • SSDEEP

    384:jl+PkjD9+E5MFs7iui8L7zuM42pfL3iB7OxVqWDRApkFXBLTsOZwpGN2v99IkuiM:5+CD93W03T42JiB70FVF49jijOjhzb2

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

C2

zafa02.hopto.org:4545

Mutex

KecGg5CGEilLm2a5

Attributes
  • install_file

    USB.exe

aes.plain

Targets

    • Target

      4240-17-0x0000000000400000-0x000000000040E000-memory.dmp

    • Size

      56KB

    • MD5

      41ca9a494d5d0e78cf16159f7fef8472

    • SHA1

      40cb6132c9e9cef0bdadbd840955f77352a9130b

    • SHA256

      aa0f5431f912497089a264ad8002e1fffda72b75a1d9f60601cc979306f2d030

    • SHA512

      0c4b9a6b3e3509ab256aeeabafa4e878865c000a06197bfd9705ac1da7289504b3640d73bfd523c98e80a3109c3ec5dab4d287b8609f215badcfb32fa512aaa9

    • SSDEEP

      384:jl+PkjD9+E5MFs7iui8L7zuM42pfL3iB7OxVqWDRApkFXBLTsOZwpGN2v99IkuiM:5+CD93W03T42JiB70FVF49jijOjhzb2

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks