Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
147s -
max time network
151s -
platform
windows11-21h2_x64 -
resource
win11-20250217-en -
resource tags
-
submitted
09/03/2025, 11:12
General
-
Target
WindowsApp2.exe
-
Size
223KB
-
MD5
aab1144f534667981033ed7c01b17c78
-
SHA1
df5b13810ba6523658aebcb30997957e724c1bea
-
SHA256
7cb42251a56a23eb077e5d6f28ab27e39f8373d9cb1d86463e6ea102219ab701
-
SHA512
018ae021c52f5a57e64d9cc47b1ca20d3838b76dc930e84e82e4058997d6cd4c89ba90db2273e51df3a1c19c328f988c253659e7b8545591c637021d765d3abe
-
SSDEEP
3072:KDJBnhJWr9osRPC9M9HfjSfpjrOpFeeIwxaZKgkoDaPT7HKTPGGFHtpx0bIO:ie9osScHfjSfhKpUtuAKgkdHu+G0
Score
10/10
Malware Config
Extracted
Family
xworm
C2
any-attraction.gl.at.ply.gg:27770
Attributes
-
Install_directory
%AppData%
-
install_file
USB.exe
Signatures
-
Detect Xworm Payload 1 IoCs
-
Xworm
Xworm is a remote access trojan written in C#.
-
Xworm family
Processes
-
C:\Users\Admin\AppData\Local\Temp\WindowsApp2.exe"C:\Users\Admin\AppData\Local\Temp\WindowsApp2.exe"1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
-
Filesize
664KB
-
Filesize
4.8MB
-
Filesize
9.6MB
-
Filesize
624KB
-
Filesize
9.6MB
-
Filesize
32KB
-
Filesize
304KB
-
Filesize
9.6MB
-
Filesize
9.6MB
-
Filesize
9.6MB
-
Filesize
96KB
-
Filesize
9.6MB
-
Filesize
4KB
-
Filesize
9.6MB
-
Filesize
9.6MB