Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

f047581f33...da.exe

windows7-x64

1

f047581f33...da.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f047581f338afd3abc2add1d68e42655b59717bbbcfdb971e799106332d319da

  • Size

    168KB

  • MD5

    580b2e62267f6280619da3bcd214d5b2

  • SHA1

    6306d5236f169965e73a57adb68fc3d9e1debdbb

  • SHA256

    f047581f338afd3abc2add1d68e42655b59717bbbcfdb971e799106332d319da

  • SHA512

    6e5dc1bffe3240d803be3f392ce25669966e55ffdf697b282e745ed1f456bdbb34d0dc4626e25e4fb50387c90979a2e9807cdd1d90e1a353f086c950ae4d37e3

  • SSDEEP

    3072:PoJIKqjcZD0byTKBMzYAVAF78iL+W9Se1XvRnxOR7cpaZFs0kJ:PnpcSMzvW18iL+W9LvFwBDZFsdJ

Score
10/10
ratbffcxloader

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

bffc

Decoy

fullframephotos.net

baixingzb.com

amisazer.com

kaliseastrand.com

nokiasoftware.net

5ztf6.xyz

starfleet.agency

pharmatechjob.com

shushukaizen.com

kdetest.xyz

aravlal.com

allforallady.com

softautumnhum.com

lightfully.info

sewunique.online

thewoodcockinn.com

belleza.house

partysbyfrances.com

geretaxservices.com

usthrivetogether.com

Signatures

  • Xloader family
    xloader
  • Xloader payload 1 IoCs
    rat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f047581f338afd3abc2add1d68e42655b59717bbbcfdb971e799106332d319da
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections