Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

55ccd703b6...69.exe

windows7-x64

1

55ccd703b6...69.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    55ccd703b61f02769e39f44f75cabd13f1164504bca956580ae23dddf71fd469

  • Size

    164KB

  • MD5

    7b8400f9329187af12098156f66c074d

  • SHA1

    1bf74f9b94f723c8332a986e340246382d9912c9

  • SHA256

    55ccd703b61f02769e39f44f75cabd13f1164504bca956580ae23dddf71fd469

  • SHA512

    439a4e842dd7354254897b5907dcd146a26aea7ceebda3764bb62b69575e1d1140b7427159663fae0555c1f0f09d8d77ea296d614f54515f148d6aeb73b78850

  • SSDEEP

    3072:kRJX9WrjXaxUTEWZ5M5GxlmRkdN3/vT1Xmuqve8NOnc:kbS33M54IWdN3/vhXmDvesuc

Score
10/10
ratugiexloader

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

ugie

Decoy

gtdjewelry.com

sharynpre.com

lightempirestore.com

howdoesaffiliatemarketing.xyz

fastfreighttracking.com

hntrvhn.quest

mugprint.store

terranostragdl.online

xhamster.express

place4updatelink.info

szqkjy.com

11elevencouture.com

sooperfash.com

tiromiesu.com

odszczecina.xyz

texasmoneylending.com

propaganda101.net

theaghouse.info

sattaking-gaziabad.xyz

mmgcheckin.com

Signatures

  • Xloader family
    xloader
  • Xloader payload 1 IoCs
    rat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 55ccd703b61f02769e39f44f75cabd13f1164504bca956580ae23dddf71fd469
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections