Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

WindowsDefender.exe

windows7-x64

10

WindowsDefender.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    WindowsDefender.exe

  • Size

    95KB

  • MD5

    65f993dfe7a91fc72368b6c2e3d19c0c

  • SHA1

    9e64ebc0bbb50dd7527d4526eafa61488327df1d

  • SHA256

    af2a912e694659f3072ea311ba087669a6b658f46354e899a6ba210fe2400bf0

  • SHA512

    c0c8416f763e41f81450fd81cb92d0eb93742c852d47c24fe87bd013a974f2258c7d8c465fa089bfa8e1be559595edfe01e99482f150b053f6b9ac34ba3516e3

  • SSDEEP

    768:5XYTWoch1vWG8eX8g33IF5P+9Ojr6BOMhJ3sUDDHW:5oWTvvAKT3YFo9Ir6BOMD/DDHW

Score
10/10
xworm

Malware Config

Extracted

Family

xworm

Version

5.0

Mutex

dknX6tigTFl8RPH7

Attributes
  • Install_directory

    %AppData%

  • install_file

    USB.exe

  • pastebin_url

    https://pastebin.com/raw/dhJRbfkU

aes.plain

Signatures

  • Detect Xworm Payload 1 IoCs
  • Xworm family
    xworm
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • WindowsDefender.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections