Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Shipping Docs.exe

  • Size

    18KB

  • Sample

    230131-ztv4jacc6w

  • MD5

    f58167d0e2b3692dbac5b35b8907e414

  • SHA1

    5cfaae6b595f0140ea0afa0f4e76ee23474edaae

  • SHA256

    4cba59fde5a74d8e86638c65299b51adacc0ce2af56c1f17cb27c13bf5bb2263

  • SHA512

    e5784c68b0145666b46117deb7276aa20c142306715180501ff9c91a574f7b4f3a2957924111728304a761f317cf63667bbcfa6cb4517cd445ed15736a91766d

  • SSDEEP

    384:X2YZbVxZ4gddXpj3fIQS3l1Hok0NGHISSNZfTQL3:meowdN3sMpGKc7

Score
7/10

Malware Config

Targets

    • Target

      Shipping Docs.exe

    • Size

      18KB

    • MD5

      f58167d0e2b3692dbac5b35b8907e414

    • SHA1

      5cfaae6b595f0140ea0afa0f4e76ee23474edaae

    • SHA256

      4cba59fde5a74d8e86638c65299b51adacc0ce2af56c1f17cb27c13bf5bb2263

    • SHA512

      e5784c68b0145666b46117deb7276aa20c142306715180501ff9c91a574f7b4f3a2957924111728304a761f317cf63667bbcfa6cb4517cd445ed15736a91766d

    • SSDEEP

      384:X2YZbVxZ4gddXpj3fIQS3l1Hok0NGHISSNZfTQL3:meowdN3sMpGKc7

    Score
    7/10
    • Uses the VBS compiler for execution

    • Accesses Microsoft Outlook profiles

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks