Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

0059248b65...fe.exe

windows7-x64

1

0059248b65...fe.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0059248b65c1e8ab945fa5fe2281813cb3c378baec21370556f0a7c2bb5dabfe

  • Size

    164KB

  • Sample

    241121-y4vebawrdz

  • MD5

    9793cfb651e8313418ef05271798bfcc

  • SHA1

    5997b2acc6142e65814d2f1e9aef3267a9539a0d

  • SHA256

    0059248b65c1e8ab945fa5fe2281813cb3c378baec21370556f0a7c2bb5dabfe

  • SHA512

    40b95bfd49ebb17dd3cfeeeda2601a32d5bae7146f4e636ab7ccb63c1e4adbbe754678e25647275202bd91f63ffa5b571f556652c48dd0218b28273584a15263

  • SSDEEP

    3072:3mJ4cHKjVj6MogwTQIM7oc9O05ecEiitmtuIE7rCF4cCSCd7TXFIX32b:35KYBC1M7Po05ecEiiTT7rQ4JFMmb

Score
10/10
xloaderdpzzdiscoveryrat

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

dpzz

Decoy

roadstown.com

idfaltd.com

infotechsearchgroup.com

elcuentodelaprincesa.com

youkutiyu88.com

wildparkresort.com

iss-sa.com

jmglaser.com

criticalthinking.store

cabinetsossa.com

satseconomy.com

newendtech.com

gran-piel.com

accoya.net

timothyschmallrealt.com

valentikaeventos.com

majestineprojector.com

love-austria.com

hermetikyogusmalikombi.com

karasevda-jor.com

Targets

    • Target

      0059248b65c1e8ab945fa5fe2281813cb3c378baec21370556f0a7c2bb5dabfe

    • Size

      164KB

    • MD5

      9793cfb651e8313418ef05271798bfcc

    • SHA1

      5997b2acc6142e65814d2f1e9aef3267a9539a0d

    • SHA256

      0059248b65c1e8ab945fa5fe2281813cb3c378baec21370556f0a7c2bb5dabfe

    • SHA512

      40b95bfd49ebb17dd3cfeeeda2601a32d5bae7146f4e636ab7ccb63c1e4adbbe754678e25647275202bd91f63ffa5b571f556652c48dd0218b28273584a15263

    • SSDEEP

      3072:3mJ4cHKjVj6MogwTQIM7oc9O05ecEiitmtuIE7rCF4cCSCd7TXFIX32b:35KYBC1M7Po05ecEiiTT7rQ4JFMmb

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks