Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d8d589ca3c0454652d8951eed3b1869ba78436c001be92a45b580965274a57d3.zip

  • Size

    105KB

  • MD5

    9809dc07bb0986b20e6fc7f7aaa996ff

  • SHA1

    18b5b2558a55ec47475706cf012f1d2aebb2d5d4

  • SHA256

    0a621f1f8c50cd584bdec0e9770b38753c1fafdd15b30a266549e6229ab338f8

  • SHA512

    b037a0e35a8c5ac431c58ce00b831b38220a09a09b23f21c57d42cab6900dff93f6522f3adc505ccce46bc3821fc8d4960273417822488e6e6cbfafcc9cb105a

  • SSDEEP

    3072:IaalD3pwt1iAQmy29OrG+Zh0Bf4tUiWGupIYX4wlc:IPlDdALp9Dsh+gtuGuaYXFc

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes
  • watermark

    0

Signatures

  • Cobalt Strike reflective loader 1 IoCs

    Detects the reflective loader used by Cobalt Strike.

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d8d589ca3c0454652d8951eed3b1869ba78436c001be92a45b580965274a57d3.zip
    .zip

    Password: infected

  • d8d589ca3c0454652d8951eed3b1869ba78436c001be92a45b580965274a57d3
    .dll windows:5 windows x86 arch:x86

    Password: infected

    cee2783f5b537863eedf6975484fc19a


    Headers

    Imports

    Sections