Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

OpenBullet...in.zip

windows7-x64

1

OpenBullet...in.zip

windows10-2004-x64

1

OpenBullet...er.bat

windows7-x64

10

OpenBullet...er.bat

windows10-2004-x64

10

OpenBullet...ram.js

windows7-x64

1

OpenBullet...ram.js

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OpenBullet-Anomaly-main.zip

  • Size

    39KB

  • Sample

    240227-1skrvacd95

  • MD5

    6e6462c5bfa658def01adaec3fecb0d2

  • SHA1

    cb450903212e46efb244d68a7a07641d2c35e8f7

  • SHA256

    8e903c28cdbed795408dcec8e83c833aaaa00089b89c9a69fbc65cf4e8ed4d92

  • SHA512

    99adfac15cfc14212b908b394ddf4da87a94ead2872c377f813c3f5a65ff2f7de0e4de5e2d2a4484527989817bb324ca8ab3d202e6fd28dcfc7a36d8eb45f3ba

  • SSDEEP

    768:NrXaXPsx5xdiRFafCUrm2nFa5FWvEeJOZbmE3IeUcJ0YrGz3ifgEsPoEMT3:NrKXPIu3afL05FWvEfZizeUc1674ghP4

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

https://github.com/OpenBulletAnomaly/OpenBullet-Anomaly/releases/download/1.4.5/OpenBullet-v1.4.5.zip

Targets

    • Target

      OpenBullet-Anomaly-main.zip

    • Size

      39KB

    • MD5

      6e6462c5bfa658def01adaec3fecb0d2

    • SHA1

      cb450903212e46efb244d68a7a07641d2c35e8f7

    • SHA256

      8e903c28cdbed795408dcec8e83c833aaaa00089b89c9a69fbc65cf4e8ed4d92

    • SHA512

      99adfac15cfc14212b908b394ddf4da87a94ead2872c377f813c3f5a65ff2f7de0e4de5e2d2a4484527989817bb324ca8ab3d202e6fd28dcfc7a36d8eb45f3ba

    • SSDEEP

      768:NrXaXPsx5xdiRFafCUrm2nFa5FWvEeJOZbmE3IeUcJ0YrGz3ifgEsPoEMT3:NrKXPIu3afL05FWvEfZizeUc1674ghP4

    Score
    1/10
    behavioral1behavioral2

    • Target

      OpenBullet-Anomaly-main/AnomalyUpdater.bat

    • Size

      1KB

    • MD5

      41a80a691d9f594e851c23ed0b480aff

    • SHA1

      16418323182ec7cff740134cf65857dcfb023eb1

    • SHA256

      93275ad49c569fb8daef227bd5b2a8fd450e69a02702b0d2efa3f1d1d6e4f4b5

    • SHA512

      41b8db5a4ba8c93c9b164161b681f4329c6344a0644cf136c87c4493e094ba6d35141e5510ad76d5336b9cd006c8414a0fb75f94bab050acec08591697f5dad9

    Score
    10/10

    • Blocklisted process makes network request

    behavioral3behavioral4

    • Target

      OpenBullet-Anomaly-main/OpenBulletCLI/Program.cs

    • Size

      10KB

    • MD5

      9c3712a2b6bc0df2db810c1db13862dc

    • SHA1

      06601f0188935d73dce2c98919438cb23fb2fa5c

    • SHA256

      a0e54a3ed9218797532612abfa37e87e1621aac1b2b141e529df7eaa2e0a3225

    • SHA512

      ccff988e63a5e2d65a084e2b577d8dfb37d2011d003e8a568e022f86a2ce15f87c5d3b3fee74867a2e932448518943a6983cc19f64cb8c8d235cb68c54c263b2

    • SSDEEP

      192:i2GG0DvEcq93f3vv/xDR7s8GvtC5cZC8jHIhAxmyCmy/Bcx4WtFampY8z96A1bnO:i2fdVPvxdA8Ge3yIhNF/+4Wtwmm8z96j

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Matrix

Tasks