Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ceeacea3e97002b1c2ee1d170be2870c8c009661422716b91c79f385e8a81ad0

  • Size

    36KB

  • Sample

    230129-x2qsnsaf85

  • MD5

    01510537913d93e1ccf585a39690b41b

  • SHA1

    e9ca94dfb2c17007d99df3ac5a40a490077e7e1d

  • SHA256

    ceeacea3e97002b1c2ee1d170be2870c8c009661422716b91c79f385e8a81ad0

  • SHA512

    fb1068a3aa9fe38f67b73201b3ad219d03436235cbbd932a90440462d990cedaae7604bb31d64e09da58623234bf0f52c746da3ee7c8227f74e48a1b164c7871

  • SSDEEP

    768:RPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJ5CQbQY2Q4ynBAf2Z:Zok3hbdlylKsgqopeJBWhZFGkE+cL2N6

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://skill.fashion/wp-data.php

Targets

    • Target

      ceeacea3e97002b1c2ee1d170be2870c8c009661422716b91c79f385e8a81ad0

    • Size

      36KB

    • MD5

      01510537913d93e1ccf585a39690b41b

    • SHA1

      e9ca94dfb2c17007d99df3ac5a40a490077e7e1d

    • SHA256

      ceeacea3e97002b1c2ee1d170be2870c8c009661422716b91c79f385e8a81ad0

    • SHA512

      fb1068a3aa9fe38f67b73201b3ad219d03436235cbbd932a90440462d990cedaae7604bb31d64e09da58623234bf0f52c746da3ee7c8227f74e48a1b164c7871

    • SSDEEP

      768:RPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJ5CQbQY2Q4ynBAf2Z:Zok3hbdlylKsgqopeJBWhZFGkE+cL2N6

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v6

Tasks