Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

10/01/2023, 10:44

230110-ms4m3afg26 10

10/01/2023, 10:35

230110-mm6v8sbd7x 10

General

  • Target

    Предложение.docx

  • Size

    18KB

  • Sample

    230110-mm6v8sbd7x

  • MD5

    57a23e05b72ea00da175108aa8085944

  • SHA1

    9ed76cacaf65819c6b71b12e95b7dd57ca14c945

  • SHA256

    2f46d8f3194a5f5ecfb7147e55791a469bcf265671e86180f853576bdea98194

  • SHA512

    56f91548e0aae724d7ce82555d130446395d0f015c04939e347331dccffb134ac9a026351247cc537645f55a31aae6d4a88e7f1fb8419dac418dedd648f227d8

  • SSDEEP

    384:TDCXYyU1AI3LobzRQII/eJ7cUeyRA3KRJbb0yodosGLDinU:TtyUaI3LIQeJ4U7JtowAU

Score
10/10

Malware Config

Targets

    • Target

      Предложение.docx

    • Size

      18KB

    • MD5

      57a23e05b72ea00da175108aa8085944

    • SHA1

      9ed76cacaf65819c6b71b12e95b7dd57ca14c945

    • SHA256

      2f46d8f3194a5f5ecfb7147e55791a469bcf265671e86180f853576bdea98194

    • SHA512

      56f91548e0aae724d7ce82555d130446395d0f015c04939e347331dccffb134ac9a026351247cc537645f55a31aae6d4a88e7f1fb8419dac418dedd648f227d8

    • SSDEEP

      384:TDCXYyU1AI3LobzRQII/eJ7cUeyRA3KRJbb0yodosGLDinU:TtyUaI3LIQeJ4U7JtowAU

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks