Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

20754491-60.xlsm

windows7_x64

10

20754491-60.xlsm

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20754491-60.xlsm

  • Size

    63KB

  • Sample

    200708-6e4smsc6tx

  • MD5

    b9236072b57105e260444f147ae54927

  • SHA1

    033a1cfd5780cb7ea3fabaabe8db663a5f13971d

  • SHA256

    b22e1571c169269bdad84dd7804189a4a6b20f600348b4e18e91661b0c08b111

  • SHA512

    863d6626b4a7230896574bf04b9041557a23f839c48427ae7798de98a0610124d7a5707f687353131bab6b4e46036b257dde0118b784ea84ef0b4e34c703e116

Score
10/10
evasionspywaretrojan

Malware Config

Targets

    • Target

      20754491-60.xlsm

    • Size

      63KB

    • MD5

      b9236072b57105e260444f147ae54927

    • SHA1

      033a1cfd5780cb7ea3fabaabe8db663a5f13971d

    • SHA256

      b22e1571c169269bdad84dd7804189a4a6b20f600348b4e18e91661b0c08b111

    • SHA512

      863d6626b4a7230896574bf04b9041557a23f839c48427ae7798de98a0610124d7a5707f687353131bab6b4e46036b257dde0118b784ea84ef0b4e34c703e116

    Score
    10/10
    evasionspywaretrojan

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blacklisted process makes network request

    • Modifies system certificate store

      evasionspywaretrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks