Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

xpmg.exe

windows7-x64

7

xpmg.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    xpmg.exe

  • Size

    10.9MB

  • Sample

    250321-jzdtfayqz6

  • MD5

    73e43654e9f3df0d07d25051b2d3cfeb

  • SHA1

    6eebcc3ab72ea0eeb5b9d3340145b41bea23423b

  • SHA256

    666944b19c707afaa05453909d395f979a267b28ff43d90d143cd36f6b74b53e

  • SHA512

    871600ae79b26bde4b5601fcf3c9e2e3d2a9f9bc04cd06d10cf69036a714a5b89b811da07070e021e7d844fc8c57a406e17361e8f738b1068b24d989e40e659c

  • SSDEEP

    196608:KoykUxv987qMNR4Ok/RDpgPnqSuR3pfRkAJ:7UxFUqMNR4Ok5DpgPnqSuR3pfRf

Score
7/10

Malware Config

Targets

    • Target

      xpmg.exe

    • Size

      10.9MB

    • MD5

      73e43654e9f3df0d07d25051b2d3cfeb

    • SHA1

      6eebcc3ab72ea0eeb5b9d3340145b41bea23423b

    • SHA256

      666944b19c707afaa05453909d395f979a267b28ff43d90d143cd36f6b74b53e

    • SHA512

      871600ae79b26bde4b5601fcf3c9e2e3d2a9f9bc04cd06d10cf69036a714a5b89b811da07070e021e7d844fc8c57a406e17361e8f738b1068b24d989e40e659c

    • SSDEEP

      196608:KoykUxv987qMNR4Ok/RDpgPnqSuR3pfRkAJ:7UxFUqMNR4Ok5DpgPnqSuR3pfRf

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks