Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

SecuriteIn...28.xls

windows7-x64

10

SecuriteIn...28.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.XLM.Trojan.Abracadabra.35.Gen.18728.6999

  • Size

    274KB

  • Sample

    220922-bgen1shdb7

  • MD5

    318de559de2f74c2c0a32fe9c785a42e

  • SHA1

    8779d5dd117078aa84fa6bd3b5640c24accb35ab

  • SHA256

    74b13011ca267c88c88789ad6d5371e2c934c4c3d3fa273593a592a64dbf1993

  • SHA512

    7760b4197e85475f9dd7fb5798c0b4617cf659387ab6293a4875f084fdcc3e0f65a5494274fe92db28a3590bb91d4850e5da2515552f8fab60ee6ae01534b073

  • SSDEEP

    6144:KcPiTQAVW/89BQnmlcGvgZ7r3J8b5IXJK++DiR:miR

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://emploimed.com/netr.dll

Targets

    • Target

      SecuriteInfo.com.XLM.Trojan.Abracadabra.35.Gen.18728.6999

    • Size

      274KB

    • MD5

      318de559de2f74c2c0a32fe9c785a42e

    • SHA1

      8779d5dd117078aa84fa6bd3b5640c24accb35ab

    • SHA256

      74b13011ca267c88c88789ad6d5371e2c934c4c3d3fa273593a592a64dbf1993

    • SHA512

      7760b4197e85475f9dd7fb5798c0b4617cf659387ab6293a4875f084fdcc3e0f65a5494274fe92db28a3590bb91d4850e5da2515552f8fab60ee6ae01534b073

    • SSDEEP

      6144:KcPiTQAVW/89BQnmlcGvgZ7r3J8b5IXJK++DiR:miR

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks