Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
142s -
max time network
137s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system -
submitted
29/07/2024, 08:07
Static task
static1
Behavioral task
behavioral1
Sample
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral2
Sample
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
Resource
win11-20240709-en
General
-
Target
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae.exe
-
Size
19KB
-
MD5
55e6cc81525f58cf81496b1f13f555b3
-
SHA1
85d4d2df6c9b523fa46e1d36651250db9aca3c41
-
SHA256
e129ee72f0bd796d7cee6b721cae70ed540e178a49607af64947e2329aa76bae
-
SHA512
503e306ad433b05eaadab696f000dd8229654bb6322ba4130baf25a444c5696412d5ace99d8d2eae2fa5c63add4cc160af5849dc5cb41504fd1b5fe8dbc6bb87
-
SSDEEP
192:cV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2TgTkr+HQWF8qa1Dojjgi:+qaCF31cix+Dc4zjygFF46gi
Malware Config
Extracted
cobaltstrike
http://23.94.247.40:189/jW6f
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Signatures
-
Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.