Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

42bf19111e...3d.exe

windows7-x64

10

42bf19111e...3d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42bf19111e93bb60426c40fa295078ee81d7e4b916d5d7e445468a9b4a9e923d

  • Size

    19KB

  • Sample

    231011-26ecnaba6y

  • MD5

    95d6515a2394af183d8b27cf85e75151

  • SHA1

    afc2a120ff6a13341fef13072aede4fe44760dd3

  • SHA256

    42bf19111e93bb60426c40fa295078ee81d7e4b916d5d7e445468a9b4a9e923d

  • SHA512

    2f3a5af3a5ef2b037c325b0a9becfabb72074b05559fabf880f8ae96650f48a9aca7bcea9f988f2aadbdc6e25ec0d661d878568da3f3395f43e85b2cb495195e

  • SSDEEP

    192:RV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2x9yvLWF8qa1Dojjgi:jqaCF31cix+Dc4zj+yvyFF46gi

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.64.129:80/NThS

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0)

Targets

    • Target

      42bf19111e93bb60426c40fa295078ee81d7e4b916d5d7e445468a9b4a9e923d

    • Size

      19KB

    • MD5

      95d6515a2394af183d8b27cf85e75151

    • SHA1

      afc2a120ff6a13341fef13072aede4fe44760dd3

    • SHA256

      42bf19111e93bb60426c40fa295078ee81d7e4b916d5d7e445468a9b4a9e923d

    • SHA512

      2f3a5af3a5ef2b037c325b0a9becfabb72074b05559fabf880f8ae96650f48a9aca7bcea9f988f2aadbdc6e25ec0d661d878568da3f3395f43e85b2cb495195e

    • SSDEEP

      192:RV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2x9yvLWF8qa1Dojjgi:jqaCF31cix+Dc4zj+yvyFF46gi

    Score
    10/10
    cobaltstrikebackdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks