Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
OpenBullet-Anomaly-main.zip
-
Size
39KB
-
Sample
240227-1skrvacd95
-
MD5
6e6462c5bfa658def01adaec3fecb0d2
-
SHA1
cb450903212e46efb244d68a7a07641d2c35e8f7
-
SHA256
8e903c28cdbed795408dcec8e83c833aaaa00089b89c9a69fbc65cf4e8ed4d92
-
SHA512
99adfac15cfc14212b908b394ddf4da87a94ead2872c377f813c3f5a65ff2f7de0e4de5e2d2a4484527989817bb324ca8ab3d202e6fd28dcfc7a36d8eb45f3ba
-
SSDEEP
768:NrXaXPsx5xdiRFafCUrm2nFa5FWvEeJOZbmE3IeUcJ0YrGz3ifgEsPoEMT3:NrKXPIu3afL05FWvEfZizeUc1674ghP4
Static task
static1
Behavioral task
behavioral1
Sample
OpenBullet-Anomaly-main.zip
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
OpenBullet-Anomaly-main.zip
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
OpenBullet-Anomaly-main/AnomalyUpdater.bat
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
OpenBullet-Anomaly-main/AnomalyUpdater.bat
Resource
win10v2004-20240226-en
Behavioral task
behavioral5
Sample
OpenBullet-Anomaly-main/OpenBulletCLI/Program.js
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
OpenBullet-Anomaly-main/OpenBulletCLI/Program.js
Resource
win10v2004-20240226-en
Malware Config
Extracted
https://github.com/OpenBulletAnomaly/OpenBullet-Anomaly/releases/download/1.4.5/OpenBullet-v1.4.5.zip
Targets
-
-
Target
OpenBullet-Anomaly-main.zip
-
Size
39KB
-
MD5
6e6462c5bfa658def01adaec3fecb0d2
-
SHA1
cb450903212e46efb244d68a7a07641d2c35e8f7
-
SHA256
8e903c28cdbed795408dcec8e83c833aaaa00089b89c9a69fbc65cf4e8ed4d92
-
SHA512
99adfac15cfc14212b908b394ddf4da87a94ead2872c377f813c3f5a65ff2f7de0e4de5e2d2a4484527989817bb324ca8ab3d202e6fd28dcfc7a36d8eb45f3ba
-
SSDEEP
768:NrXaXPsx5xdiRFafCUrm2nFa5FWvEeJOZbmE3IeUcJ0YrGz3ifgEsPoEMT3:NrKXPIu3afL05FWvEfZizeUc1674ghP4
Score1/10 -
-
-
Target
OpenBullet-Anomaly-main/AnomalyUpdater.bat
-
Size
1KB
-
MD5
41a80a691d9f594e851c23ed0b480aff
-
SHA1
16418323182ec7cff740134cf65857dcfb023eb1
-
SHA256
93275ad49c569fb8daef227bd5b2a8fd450e69a02702b0d2efa3f1d1d6e4f4b5
-
SHA512
41b8db5a4ba8c93c9b164161b681f4329c6344a0644cf136c87c4493e094ba6d35141e5510ad76d5336b9cd006c8414a0fb75f94bab050acec08591697f5dad9
Score10/10-
Blocklisted process makes network request
-
-
-
Target
OpenBullet-Anomaly-main/OpenBulletCLI/Program.cs
-
Size
10KB
-
MD5
9c3712a2b6bc0df2db810c1db13862dc
-
SHA1
06601f0188935d73dce2c98919438cb23fb2fa5c
-
SHA256
a0e54a3ed9218797532612abfa37e87e1621aac1b2b141e529df7eaa2e0a3225
-
SHA512
ccff988e63a5e2d65a084e2b577d8dfb37d2011d003e8a568e022f86a2ce15f87c5d3b3fee74867a2e932448518943a6983cc19f64cb8c8d235cb68c54c263b2
-
SSDEEP
192:i2GG0DvEcq93f3vv/xDR7s8GvtC5cZC8jHIhAxmyCmy/Bcx4WtFampY8z96A1bnO:i2fdVPvxdA8Ge3yIhNF/+4Wtwmm8z96j
Score1/10 -