Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cc0a345e8f33b676e64bb8624a12b7831880bb9d27fc7e30923f239307976410

  • Size

    337KB

  • Sample

    201126-m27tk8r6js

  • MD5

    cf9c2ff0e5ca4d7c91d05d8bc8e6a710

  • SHA1

    586d42846bd67b726606c4e7325bcc0a3339bec3

  • SHA256

    cc0a345e8f33b676e64bb8624a12b7831880bb9d27fc7e30923f239307976410

  • SHA512

    fd517573dc26a6bc698f44dbc9af57d894363a566b053a81ca0e5030bc2039d1bdf94da548afcebf0a831dc80d7294395a936a2f919dda3bff9376f0208014e4

Score
10/10

Malware Config

Targets

    • Target

      cc0a345e8f33b676e64bb8624a12b7831880bb9d27fc7e30923f239307976410

    • Size

      337KB

    • MD5

      cf9c2ff0e5ca4d7c91d05d8bc8e6a710

    • SHA1

      586d42846bd67b726606c4e7325bcc0a3339bec3

    • SHA256

      cc0a345e8f33b676e64bb8624a12b7831880bb9d27fc7e30923f239307976410

    • SHA512

      fd517573dc26a6bc698f44dbc9af57d894363a566b053a81ca0e5030bc2039d1bdf94da548afcebf0a831dc80d7294395a936a2f919dda3bff9376f0208014e4

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blacklisted process makes network request

MITRE ATT&CK Enterprise v6

Tasks