Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

96d2eb0b0b...46.exe

windows7-x64

1

96d2eb0b0b...46.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    96d2eb0b0bcd13419512bd25b8bea5807b1ee5754033f4e997df5aced1326c46

  • Size

    168KB

  • MD5

    2b2c95b6e46773629fc5375463dca932

  • SHA1

    2a22b1aeec0d13590eddaba4536dc0701e6efeec

  • SHA256

    96d2eb0b0bcd13419512bd25b8bea5807b1ee5754033f4e997df5aced1326c46

  • SHA512

    a9ca194d1364019fedd62a0ac3e50a13e7d61e2457b382e9495350ae5395cf9c8a7f4d6152621738922daf2a716565a02f6cd3cbf170e372b7337fec96064df0

  • SSDEEP

    3072:PJoN62wGXSwwdBMJJRu8kysNJR1yCSbKtlOnsPTSX:ef2XMJjfkysNJR1y/7ns

Score
10/10
ratarrixloader

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

arri

Decoy

caixinhadesom.com

thoughtroad.com

netexpertos.com

bmsiaccesshk.com

workingwithcomplexity.com

nixbik.com

hebedsa.com

retirednightowl.com

221791.com

zestboardgames.com

dangdike.net

jitclw.com

vplike.com

huifengnf.com

worcesterhistory.store

koli-skrap.com

lheteclase.quest

emilio-m.com

719941.com

anapriscilamarketing.com

Signatures

  • Xloader family
    xloader
  • Xloader payload 1 IoCs
    rat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 96d2eb0b0bcd13419512bd25b8bea5807b1ee5754033f4e997df5aced1326c46
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections