859dab460382b4b7a805a3a6b32e198b92d1ae3e18c22934fd8deeefe52a5d74 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

Claim_C039.wsf

windows7-x64

Claim_C039.wsf

windows10-2004-x64

Sharing

General

Target

Claim_C039.wsf
Size

66KB
Sample

230525-s77k6abf71
MD5

d5450a71c48f8ff148f3440e125ae7dc
SHA1

512b6fb461d575df7f4e1f2f1114c6ad195d2e7b
SHA256

859dab460382b4b7a805a3a6b32e198b92d1ae3e18c22934fd8deeefe52a5d74
SHA512

d0eb36c5cc2d3c1b91c3427c6e6f3e663d08ef6408b1b1c91b5894ab55114d2f2192661c1f0aa0e8dd4fbd6c583ee008325aa8b0f0eeeffc48218be5f476b151
SSDEEP

1536:IaBFZc8npNU8nVP+R2mrPk59sKK2xFMLfxv0:TjHQVH2Yfq

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

Claim_C039.wsf

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Claim_C039.wsf

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  Claim_C039.wsf
- Size
  
  66KB
- MD5
  
  d5450a71c48f8ff148f3440e125ae7dc
- SHA1
  
  512b6fb461d575df7f4e1f2f1114c6ad195d2e7b
- SHA256
  
  859dab460382b4b7a805a3a6b32e198b92d1ae3e18c22934fd8deeefe52a5d74
- SHA512
  
  d0eb36c5cc2d3c1b91c3427c6e6f3e663d08ef6408b1b1c91b5894ab55114d2f2192661c1f0aa0e8dd4fbd6c583ee008325aa8b0f0eeeffc48218be5f476b151
- SSDEEP
  
  1536:IaBFZc8npNU8nVP+R2mrPk59sKK2xFMLfxv0:TjHQVH2Yfq
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy