warmcookie | 2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

2c7b3b0aff...f4.exe

windows7-x64

1

2c7b3b0aff...f4.exe

windows10-2004-x64

1

Sharing

General

Target

2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4
Size

127KB
Sample

241220-tby5ksynf1
MD5

63ba6b7ca399447dec16a6a6cc66d2a6
SHA1

b467f62614059072d21d0b2e323bfba95f77f3d1
SHA256

2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4
SHA512

ff962c36af4a7fc8bee46ea56e0a382e3fd55c0b338501a0e689aa3b35301193616c54ce4d2a68f20780a04e81c7e167fe2c13413a5868622859de7254778f43
SSDEEP

1536:Z0cY4O5lsRyOmayXRQpJeWEIo+6p/tVAUvMFMQiNTR3ADfG0q:+cc0CQWIoVp/tVoiRQDfG0q

Score

10^/10

warmcookie backdoor

Static task

static1

backdoor warmcookie

2 signatures

Behavioral task

behavioral1

Sample

2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

warmcookie

Targets

- Target
  
  2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4
- Size
  
  127KB
- MD5
  
  63ba6b7ca399447dec16a6a6cc66d2a6
- SHA1
  
  b467f62614059072d21d0b2e323bfba95f77f3d1
- SHA256
  
  2c7b3b0affa52403e92ff46b818ae264783618dd7032d8f4b64e9804ba772cf4
- SHA512
  
  ff962c36af4a7fc8bee46ea56e0a382e3fd55c0b338501a0e689aa3b35301193616c54ce4d2a68f20780a04e81c7e167fe2c13413a5868622859de7254778f43
- SSDEEP
  
  1536:Z0cY4O5lsRyOmayXRQpJeWEIo+6p/tVAUvMFMQiNTR3ADfG0q:+cc0CQWIoVp/tVoiRQDfG0q
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

backdoorwarmcookie

behavioral1

behavioral2

© 2018-2025

Terms | Privacy