Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a29f9987e0bb04d05ec08b11adf9fd676405d25e9fa1547a9bdc2a8fe2d3e47d

  • Size

    36KB

  • Sample

    230129-x2tvbscb3t

  • MD5

    00065f46756d2a444f29a7e9d99c319e

  • SHA1

    9bca32c300ea79ac5b441f188ea8b1d87510d50a

  • SHA256

    a29f9987e0bb04d05ec08b11adf9fd676405d25e9fa1547a9bdc2a8fe2d3e47d

  • SHA512

    4f18f77c3152932b18911cc2b9e8ef99684b170626bda3e0776729d6d8535e0b1b89f9e17faa0e35b3c329bada359667fd3c5feabc6999b51419867b5206538d

  • SSDEEP

    768:APqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJRqIkApg+1QshBQ37yO:Mok3hbdlylKsgqopeJBWhZFGkE+cL2NR

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://statedauto.com/wp-data.php

Targets

    • Target

      a29f9987e0bb04d05ec08b11adf9fd676405d25e9fa1547a9bdc2a8fe2d3e47d

    • Size

      36KB

    • MD5

      00065f46756d2a444f29a7e9d99c319e

    • SHA1

      9bca32c300ea79ac5b441f188ea8b1d87510d50a

    • SHA256

      a29f9987e0bb04d05ec08b11adf9fd676405d25e9fa1547a9bdc2a8fe2d3e47d

    • SHA512

      4f18f77c3152932b18911cc2b9e8ef99684b170626bda3e0776729d6d8535e0b1b89f9e17faa0e35b3c329bada359667fd3c5feabc6999b51419867b5206538d

    • SSDEEP

      768:APqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJRqIkApg+1QshBQ37yO:Mok3hbdlylKsgqopeJBWhZFGkE+cL2NR

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v6

Tasks