Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

working one ig.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    working one ig.exe

  • Size

    89KB

  • MD5

    3eca2005bcc7a67d5f3b3a46e45fd11e

  • SHA1

    8b181cf225fe7aff9799260bd25805e8b7849a90

  • SHA256

    18e899d8d15d30164b697741a04ed67fa00f377047f63555dfd4231145c6f3b2

  • SHA512

    12a3f62d14628a5ad322dd16193be748eeb8ed8f27f641e9be011344141528576485fa4e3d818a3a2b699949aa415dd6ca0cd1fca3ab2b8a2100f45ae4a05678

  • SSDEEP

    1536:zLgBUitSA/Ua3ArtXqDnz3p53V879bqSWTiDrVJe44706g7P5RAO+x/ePO/sn+Y:zDxf1aPXa79bqfFRy7xRAO8eP9+Y

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

C2

publication-glossary.gl.at.ply.gg:4444

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

  • telegram

    https://api.telegram.org/bot7704029346:AAHPre1lXQa0UfPCpOUXJZ9UXA9mFxvH4Gk/sendMessage?chat_id=7590668020

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • working one ig.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections