Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ad4b2fd7a8eb6621168ac954783ab59a9687c97d08bd986a1c5d3d375d279fef

  • Size

    2.7MB

  • MD5

    abc522192954f27f75765a17addeb177

  • SHA1

    2a2b797d5a9a736dc7cd8ad538b214469ba97c1c

  • SHA256

    ad4b2fd7a8eb6621168ac954783ab59a9687c97d08bd986a1c5d3d375d279fef

  • SHA512

    754432264761b73f4cb6a9aea89ba6363589c7b6e068b6a7d1acf45646923dea920eeb8c97aabf2cbc2a100092e4580b8de9ae3ebf919464f7f22e3363fe187a

  • SSDEEP

    24576:g7mhizMj4uNY4p5pfL4WTmwEwCiz5pQxLJ9UhS7dgsE6VcWvZF++K9fKa18dpn:g7ciIkMTme2JSmb+JF18vn

Score
10/10

Malware Config

Extracted

Family

cobaltstrike

C2

http://139.159.247.207:80/qREU

Attributes
  • user_agent

    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727; 360space)

Signatures

  • Cobaltstrike family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ad4b2fd7a8eb6621168ac954783ab59a9687c97d08bd986a1c5d3d375d279fef
    .exe windows:6 windows x64 arch:x64


    Headers

    Exports

    Sections