Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

Office 365 92270.xlsm

windows7_x64

10

Office 365 92270.xlsm

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Office 365 92270.xlsm

  • Size

    35KB

  • Sample

    200713-7cynzc34yn

  • MD5

    3387406ff10f4b2eddf8736429265604

  • SHA1

    f996ae36d7c2d8b98e1a5174c2a31c86b77a2b38

  • SHA256

    c898e064e2030566e29594c3ef3cbe6720304861fb0126dfed0477de444d63c4

  • SHA512

    8b5b4e0618fa30f1a2125a429cfcf0b41ab54664055c8ce8ec94ef1796a663a1668118f2d5fb03c4c59ad923a1ffcb8889589b9bec7d8ec26147ef2876ada2c0

Score
10/10
evasionspywaretrojan

Malware Config

Targets

    • Target

      Office 365 92270.xlsm

    • Size

      35KB

    • MD5

      3387406ff10f4b2eddf8736429265604

    • SHA1

      f996ae36d7c2d8b98e1a5174c2a31c86b77a2b38

    • SHA256

      c898e064e2030566e29594c3ef3cbe6720304861fb0126dfed0477de444d63c4

    • SHA512

      8b5b4e0618fa30f1a2125a429cfcf0b41ab54664055c8ce8ec94ef1796a663a1668118f2d5fb03c4c59ad923a1ffcb8889589b9bec7d8ec26147ef2876ada2c0

    Score
    10/10
    evasionspywaretrojan

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blacklisted process makes network request

    • Modifies system certificate store

      evasionspywaretrojan

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks