1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

8

1d03a3cd25...c.dotm

windows7-x64

1

1d03a3cd25...c.dotm

windows10-2004-x64

Sharing

General

Target

1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c.dotm
Size

90KB
Sample

230418-f44zmshg66
MD5

e079b77d75e36364b7cb0e2699fb676b
SHA1

2d2a142738c7bdcdddde5c60413474c17081ae03
SHA256

1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c
SHA512

47d1ee4b9060509df11582ea7e41e6ab7de41973fe5b73a7fccbd057fa212ebe67318fa833a2c6002d3adac873b1687141e8ce829b1a460eff1227241fda3ca4
SSDEEP

1536:xkNC4f6RbgcJ53/KHqYVXYvquK0abxdMq12UKMK4LEZh5rZ+N8ql5Hw/acyYfM+Y:xAfYbgwiK9Su+0nIK+EZjC8qle/acySY

Score

10^/10

macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c.dotm

Resource

win7-20230220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c.dotm

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c.dotm
- Size
  
  90KB
- MD5
  
  e079b77d75e36364b7cb0e2699fb676b
- SHA1
  
  2d2a142738c7bdcdddde5c60413474c17081ae03
- SHA256
  
  1d03a3cd25fb95bc52f557df31100250768107bad146f1793785e8b630dee67c
- SHA512
  
  47d1ee4b9060509df11582ea7e41e6ab7de41973fe5b73a7fccbd057fa212ebe67318fa833a2c6002d3adac873b1687141e8ce829b1a460eff1227241fda3ca4
- SSDEEP
  
  1536:xkNC4f6RbgcJ53/KHqYVXYvquK0abxdMq12UKMK4LEZh5rZ+N8ql5Hw/acyYfM+Y:xAfYbgwiK9Su+0nIK+EZjC8qle/acySY
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy