Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    24bc3419ed40e5dcc4b96bc41e6bf43763ec5442d465b681e19a32686d025226

  • Size

    477KB

  • Sample

    240409-xlzewaee29

  • MD5

    d56f6219a261d4738c459aea2c5a86e9

  • SHA1

    7c0bbd32d14fcc7dc99a9fd004c761d1a12290f5

  • SHA256

    24bc3419ed40e5dcc4b96bc41e6bf43763ec5442d465b681e19a32686d025226

  • SHA512

    cda623f402d468cbbf1ecc30df563d4f3c56697cb71f5093de6a37d392adecc32f2771c538c097ea108c1bbbc5f6caf191387e9ef9664a5cc2005f4611f71efd

  • SSDEEP

    12288:mCYtNDwqkXJAe4Q5oWqZPVyGDEQPJlhPVMq9QbPF7Nw:v8Dpte4Q9gtyGIkvhtMbU

Malware Config

Extracted

Family

cobaltstrike

C2

http://:0

Targets

    • Target

      24bc3419ed40e5dcc4b96bc41e6bf43763ec5442d465b681e19a32686d025226

    • Size

      477KB

    • MD5

      d56f6219a261d4738c459aea2c5a86e9

    • SHA1

      7c0bbd32d14fcc7dc99a9fd004c761d1a12290f5

    • SHA256

      24bc3419ed40e5dcc4b96bc41e6bf43763ec5442d465b681e19a32686d025226

    • SHA512

      cda623f402d468cbbf1ecc30df563d4f3c56697cb71f5093de6a37d392adecc32f2771c538c097ea108c1bbbc5f6caf191387e9ef9664a5cc2005f4611f71efd

    • SSDEEP

      12288:mCYtNDwqkXJAe4Q5oWqZPVyGDEQPJlhPVMq9QbPF7Nw:v8Dpte4Q9gtyGIkvhtMbU

    • Cobaltstrike

      Detected malicious payload which is part of Cobaltstrike.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks