Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

Claim_C736.wsf

windows7-x64

10

Claim_C736.wsf

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rxomzbptfg.zip

  • Size

    24KB

  • Sample

    230524-vknwmsdf57

  • MD5

    2424e7c6af1a2c04359829a921e0202a

  • SHA1

    b58cb9b7193d2d121c89295ef54383abd995ef66

  • SHA256

    ecf100317748982479f8f8d5480b337bd8027141facc05e7230aa70c1acb70b0

  • SHA512

    38d2c68a86362204515dc08cbb1b25a8f2825013d133d763906c9e42181ee2a7d8b93b321d1d41ff00bdc109cf48d29f072228593f0b1f1d9c5ba13d4cdbd393

  • SSDEEP

    384:JX3+nhK3C8jTqdOQiTaGSgPKNYr0SOlMASd+lR/IW+Kfz9YFwZYFd:Uky8jToOQiul4bCiy7CFlFd

Score
10/10

Malware Config

Targets

    • Target

      Claim_C736.wsf

    • Size

      60KB

    • MD5

      ab56f73616cb46052b1216a5215a0b04

    • SHA1

      a8a47d321dbd6b768d1d4dab7480ac6b947c1600

    • SHA256

      21655aa8370b5541fbaebb6b02da5eb294eaf82066ab42889b8df15a709fb5c3

    • SHA512

      378b54053f6e0fea6205952920a281b2769e7ad135c8b933f34a845511312277734afe940f1210b8e009cc1e2ebbda8de191ac53f3d1c1d75ef45241fb6887bd

    • SSDEEP

      1536:vVqqMgLjJvyKjIXHWmmm/g3ueag8WSZT5xMJ1ZOv1Ic6:Aux0X/bg3Xag/SZNxMJ1ZOv1It

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks