Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

FixSfp.exe

windows10-2004-x64

10

FixSfp.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FixSfp.exe

  • Size

    1.2MB

  • Sample

    241207-y5xaas1rdz

  • MD5

    5485a36d9616176df201838c9af23a78

  • SHA1

    52170c2bbdb99340f33c30fa0c4d9c9173bd84c2

  • SHA256

    a55b9def7b42e2e2eaa8bafd3ba7627509d4b8e750ef22a26de675c21a708533

  • SHA512

    5c5e5599cae76aaf83a7e8d4182fc96c3147f2629c70abe8d74e13d930d00adda011068164269dd7af202af9b5166680ce3aabc1d59732c04773d69f76a5e4a2

  • SSDEEP

    24576:41Oq6K1HpJFhBlXx0bqJDAlgckIaczF6UuUgsIBIyzgk:4VvZpJFXJHckIach6r5sIBIyP

Score
10/10
warmcookiebackdoor

Malware Config

Extracted

Family

warmcookie

C2

176.31.45.36

Attributes
  • mutex

    d1fbdca6-9084-43a7-8337-f640b2289d34

  • user_agent

    Mozilla / 4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1;.NET CLR 1.0.3705)

Targets

    • Target

      FixSfp.exe

    • Size

      1.2MB

    • MD5

      5485a36d9616176df201838c9af23a78

    • SHA1

      52170c2bbdb99340f33c30fa0c4d9c9173bd84c2

    • SHA256

      a55b9def7b42e2e2eaa8bafd3ba7627509d4b8e750ef22a26de675c21a708533

    • SHA512

      5c5e5599cae76aaf83a7e8d4182fc96c3147f2629c70abe8d74e13d930d00adda011068164269dd7af202af9b5166680ce3aabc1d59732c04773d69f76a5e4a2

    • SSDEEP

      24576:41Oq6K1HpJFhBlXx0bqJDAlgckIaczF6UuUgsIBIyzgk:4VvZpJFXJHckIach6r5sIBIyP

    Score
    10/10
    warmcookiebackdoor
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks