Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

4bbc9b7d3e...6b.exe

windows7-x64

10

4bbc9b7d3e...6b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4bbc9b7d3ec2c62ee5ddafe0fc27b6450912276d2947edbc05ed1573c21d5d6b

  • Size

    1.5MB

  • Sample

    231010-1t23hsea2w

  • MD5

    e514dae130a78e81fa0b4fb79a1b1784

  • SHA1

    58621354b9f6149fb1d3b4ea0e46d61ec082b797

  • SHA256

    4bbc9b7d3ec2c62ee5ddafe0fc27b6450912276d2947edbc05ed1573c21d5d6b

  • SHA512

    c6627a2e275f85a6c57792f104c1b44dd6062ffc1613cad01baa5c8ef758dd59154d08bb20c741b8367acc6126626d72d04acad6582b9f9b9e5102f593a129d0

  • SSDEEP

    24576:zkZZZZoAMW8nu2G3MH8fCK8/g4vppBq7xQ5FWD1p:zkZZTo9Nnu2GcGC/g4vD48FWD1

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://120.24.38.217:8899/pbAJ

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; UHS)

Targets

    • Target

      4bbc9b7d3ec2c62ee5ddafe0fc27b6450912276d2947edbc05ed1573c21d5d6b

    • Size

      1.5MB

    • MD5

      e514dae130a78e81fa0b4fb79a1b1784

    • SHA1

      58621354b9f6149fb1d3b4ea0e46d61ec082b797

    • SHA256

      4bbc9b7d3ec2c62ee5ddafe0fc27b6450912276d2947edbc05ed1573c21d5d6b

    • SHA512

      c6627a2e275f85a6c57792f104c1b44dd6062ffc1613cad01baa5c8ef758dd59154d08bb20c741b8367acc6126626d72d04acad6582b9f9b9e5102f593a129d0

    • SSDEEP

      24576:zkZZZZoAMW8nu2G3MH8fCK8/g4vppBq7xQ5FWD1p:zkZZTo9Nnu2GcGC/g4vD48FWD1

    Score
    10/10
    cobaltstrikebackdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks