Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

88c9068156...b2.exe

windows7-x64

1

88c9068156...b2.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88c9068156cdb07dddedf09a6cb99d1e915c670afed162f90fda12c5fce788b2

  • Size

    164KB

  • Sample

    241121-ys3xbawmdy

  • MD5

    2b576d66e84a553a089a0755a36b2bc7

  • SHA1

    b68d6180adc797a718c1d6a26ecc950a6d6d4f1f

  • SHA256

    88c9068156cdb07dddedf09a6cb99d1e915c670afed162f90fda12c5fce788b2

  • SHA512

    7e26dabb5741c82e3dbb0d6683cc037d4ddf9b049c18c8019a0cb45908db4b450514cce16c1eccd918709dcc1fb2b704be95bbe6773547004f35bba5e4f6ac58

  • SSDEEP

    3072:HiJ+m2PKejBfjqJPm39MVL80yAbgMuvfr2qmto+ZnB/Vaa5Ty:HHqVwtMVw75MorrAo+ZnBh5Ty

Score
10/10
xloaderuj3cdiscoveryrat

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

uj3c

Decoy

media4play.store

detractsloznk.xyz

istansw.com

best-weight-loss.website

orchids22.com

cjbd68.com

fu5544.com

covidworld.info

nguyenthanhanh.com

aerodisinfectant.com

restaurantebrasasylea.com

woodencok.com

nxtzhhxt.com

tandemfinancialaz.com

newagespiritualitystore.com

thomasophie.online

ottnershop.com

sat-tabacologie.com

tj2988.com

colocauto.com

Targets

    • Target

      88c9068156cdb07dddedf09a6cb99d1e915c670afed162f90fda12c5fce788b2

    • Size

      164KB

    • MD5

      2b576d66e84a553a089a0755a36b2bc7

    • SHA1

      b68d6180adc797a718c1d6a26ecc950a6d6d4f1f

    • SHA256

      88c9068156cdb07dddedf09a6cb99d1e915c670afed162f90fda12c5fce788b2

    • SHA512

      7e26dabb5741c82e3dbb0d6683cc037d4ddf9b049c18c8019a0cb45908db4b450514cce16c1eccd918709dcc1fb2b704be95bbe6773547004f35bba5e4f6ac58

    • SSDEEP

      3072:HiJ+m2PKejBfjqJPm39MVL80yAbgMuvfr2qmto+ZnB/Vaa5Ty:HHqVwtMVw75MorrAo+ZnBh5Ty

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks