86c8fc489c8256937d4640dc57493d41bfe71386524eaadbbd14f9c971a4a2bd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

SecuriteIn...02.xls

windows7_x64

6

SecuriteIn...02.xls

windows10_x64

1

Sharing

General

Target

SecuriteInfo.com.DOC.Kryptik.Q.17802
Size

298KB
Sample

200713-jlg7jxbkzs
MD5

5bfc27982ec354174ef9d3a74b0864cb
SHA1

6086ffed6ea08326b77e33b1bb9ae5493ea7c507
SHA256

86c8fc489c8256937d4640dc57493d41bfe71386524eaadbbd14f9c971a4a2bd
SHA512

c3909797c9e3d9a4a8a13d77c8c2d4eeecf1ba94d34fd09e0bfbbdcf9f8621d7fa07703eb14596dd1afdfe396e6e170d681ba7eb20802a1ef74542894ee12c72

Score

8^/10

macro

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.DOC.Kryptik.Q.17802.xls

Resource

win7v200430

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.DOC.Kryptik.Q.17802.xls

Resource

win10

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  SecuriteInfo.com.DOC.Kryptik.Q.17802
- Size
  
  298KB
- MD5
  
  5bfc27982ec354174ef9d3a74b0864cb
- SHA1
  
  6086ffed6ea08326b77e33b1bb9ae5493ea7c507
- SHA256
  
  86c8fc489c8256937d4640dc57493d41bfe71386524eaadbbd14f9c971a4a2bd
- SHA512
  
  c3909797c9e3d9a4a8a13d77c8c2d4eeecf1ba94d34fd09e0bfbbdcf9f8621d7fa07703eb14596dd1afdfe396e6e170d681ba7eb20802a1ef74542894ee12c72
Score

6^/10
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy