336422c5dbfc18b01ae8ea697c817878596a5224f00c598e3667654e1ef7f3e6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

Form_00062540125.xls

windows7_x64

6

Form_00062540125.xls

windows10_x64

6

Resubmissions

09/07/2020, 19:48

200709-9lbrfjbh3s 8

Sharing

General

Target

Form_00062540125.xls
Size

78KB
Sample

200709-9lbrfjbh3s
MD5

7b617d2a6ef074c746f91f5010fb274f
SHA1

fb6352bb39715a5142fd9979898a04bc274a9a4c
SHA256

336422c5dbfc18b01ae8ea697c817878596a5224f00c598e3667654e1ef7f3e6
SHA512

95577c78dfafcdf98403b6550c2ee25c8069091d5d3ef60a3ab9b916cb11d831f034c65b4e34208fd735510349ae0a4bdbec99f41507b2e38b93aa6f40733366

Score

8^/10

macro

Static task

static1

Behavioral task

behavioral1

Sample

Form_00062540125.xls

Resource

win7

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Form_00062540125.xls

Resource

win10v200430

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Form_00062540125.xls
- Size
  
  78KB
- MD5
  
  7b617d2a6ef074c746f91f5010fb274f
- SHA1
  
  fb6352bb39715a5142fd9979898a04bc274a9a4c
- SHA256
  
  336422c5dbfc18b01ae8ea697c817878596a5224f00c598e3667654e1ef7f3e6
- SHA512
  
  95577c78dfafcdf98403b6550c2ee25c8069091d5d3ef60a3ab9b916cb11d831f034c65b4e34208fd735510349ae0a4bdbec99f41507b2e38b93aa6f40733366
Score

6^/10
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy