Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
154s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
25/07/2024, 13:15 UTC
Static task
static1
Behavioral task
behavioral1
Sample
6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe
-
Size
90KB
-
MD5
6fb99828380efda6fb357be8e59524f6
-
SHA1
94a3911a1813273e7464e030b6a52859f62dd1f4
-
SHA256
0c34a4722c74afd100e8d59d69d21da8b9c1cd813663b9ba5c55737e6f6170ad
-
SHA512
9e6729262f38f3f200309e5ed810b5899adda6295411d20883445c55095f16df63eef44b6d0951ee8fb66e39dc74e8fcab7874576ff88500ae825b1b8c1b21ed
-
SSDEEP
1536:oaHn4JUoKrukjj11ZeCBlLD3J2BzUTbimNzBKi570rdYHBYAkodUMTQeoNw4ndFw:LHCu7jjFZ1LA4bvzBNQk2AxdrTQeoNwl
Malware Config
Extracted
limerat
-
antivm
false
-
c2_url
https://pastebin.com/raw/SKyptWbF
-
download_payload
false
-
install
false
-
pin_spread
false
-
usb_spread
false
Signatures
-
Executes dropped EXE 1 IoCs
pid Process 2288 secured.exe -
Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
flow ioc 4 pastebin.com 5 pastebin.com -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Scheduled Task/Job: Scheduled Task 1 TTPs 1 IoCs
Schtasks is often used by malware for persistence or to perform post-infection execution.
pid Process 804 schtasks.exe -
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeDebugPrivilege 2288 secured.exe Token: SeDebugPrivilege 2288 secured.exe -
Suspicious use of WriteProcessMemory 6 IoCs
description pid Process procid_target PID 1940 wrote to memory of 804 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 31 PID 1940 wrote to memory of 804 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 31 PID 1940 wrote to memory of 804 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 31 PID 1940 wrote to memory of 2288 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 33 PID 1940 wrote to memory of 2288 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 33 PID 1940 wrote to memory of 2288 1940 6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe 33 -
Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
Processes
-
C:\Users\Admin\AppData\Local\Temp\6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\6fb99828380efda6fb357be8e59524f6_JaffaCakes118.exe"1⤵
- Suspicious use of WriteProcessMemory
PID:1940 -
C:\Windows\system32\schtasks.exeschtasks /create /f /sc ONLOGON /RL HIGHEST /tn LimeRAT-Admin /tr "'C:\Users\Admin\AppData\Local\Temp\secured.exe'"2⤵
- Scheduled Task/Job: Scheduled Task
PID:804
-
-
C:\Users\Admin\AppData\Local\Temp\secured.exe"C:\Users\Admin\AppData\Local\Temp\secured.exe"2⤵
- Executes dropped EXE
- Suspicious use of AdjustPrivilegeToken
PID:2288
-
Network
-
Remote address:8.8.8.8:53Requestpastebin.comIN AResponsepastebin.comIN A104.20.4.235pastebin.comIN A104.20.3.235pastebin.comIN A172.67.19.24
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: MISS
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6c75afc094b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 6
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6c9a1fd794b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 11
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6cbc3a3c94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 12
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6cc52fe694b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 14
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6cd1cc0694b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 19
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6ceeb8b394b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 22
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d02befd94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 24
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d0f6d1994b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 29
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d2da9d094b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 31
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d375f6594b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 35
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d52281c94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 46
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6d965d0594b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 48
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6da69e8f94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 54
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6dc7fb2694b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 57
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6dd9b85d94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 60
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6deb7be594b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 65
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e100b7f94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 69
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e29dcd794b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 72
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e3c597594b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 77
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e5999af94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 80
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e6949c394b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 85
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e8a48eb94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 87
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6e999e1194b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 93
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6ebbb86a94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 96
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6ecf3ce994b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 98
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6edc096d94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 103
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6efb3e3794b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 106
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f10e8e594b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 109
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f1ede3c94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 113
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f3a283894b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 115
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f43efb694b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 119
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f626ce994b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 122
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f7169ee94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 127
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6f9098af94b5-LHR
-
Remote address:104.20.4.235:443RequestGET /raw/SKyptWbF HTTP/1.1
Host: pastebin.com
ResponseHTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 133
Last-Modified: Thu, 25 Jul 2024 13:16:18 GMT
Server: cloudflare
CF-RAY: 8a8c6fb76fa594b5-LHR
-
6.8kB 25.1kB 78 81
HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200HTTP Request
GET https://pastebin.com/raw/SKyptWbFHTTP Response
200 -
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 80 B 3 2
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
-
152 B 120 B 3 3
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
90KB
MD56fb99828380efda6fb357be8e59524f6
SHA194a3911a1813273e7464e030b6a52859f62dd1f4
SHA2560c34a4722c74afd100e8d59d69d21da8b9c1cd813663b9ba5c55737e6f6170ad
SHA5129e6729262f38f3f200309e5ed810b5899adda6295411d20883445c55095f16df63eef44b6d0951ee8fb66e39dc74e8fcab7874576ff88500ae825b1b8c1b21ed