Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fbd7696442a2b68ebea7a8f22964f5719e0c2f2390bf48dd40335d338a24bd7f

  • Size

    36KB

  • Sample

    230129-x2me9acb2v

  • MD5

    6163091cdc13ca551395880c434c2479

  • SHA1

    41344795654f39795bcc787c3b4b882e61ec940f

  • SHA256

    fbd7696442a2b68ebea7a8f22964f5719e0c2f2390bf48dd40335d338a24bd7f

  • SHA512

    37792c2a475c4f0d8e959465e6197cf76b8d8f7d71eae421e0047751c99d8e5da1860c99db18cd454cc4f02b4a8e254159ec810d30c3961972b98e1bc303cb76

  • SSDEEP

    768:PPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJZk4DLozJt1XUz8nFQZm:nok3hbdlylKsgqopeJBWhZFGkE+cL2NN

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://markens.online/wp-data.php

Targets

    • Target

      fbd7696442a2b68ebea7a8f22964f5719e0c2f2390bf48dd40335d338a24bd7f

    • Size

      36KB

    • MD5

      6163091cdc13ca551395880c434c2479

    • SHA1

      41344795654f39795bcc787c3b4b882e61ec940f

    • SHA256

      fbd7696442a2b68ebea7a8f22964f5719e0c2f2390bf48dd40335d338a24bd7f

    • SHA512

      37792c2a475c4f0d8e959465e6197cf76b8d8f7d71eae421e0047751c99d8e5da1860c99db18cd454cc4f02b4a8e254159ec810d30c3961972b98e1bc303cb76

    • SSDEEP

      768:PPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJZk4DLozJt1XUz8nFQZm:nok3hbdlylKsgqopeJBWhZFGkE+cL2NN

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v6

Tasks