Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Epica_Invite.doc

  • Size

    76KB

  • MD5

    a539b1a18cc5d49335c2b58161441c15

  • SHA1

    51850bbffe7c62f35aa7a46b4c7d416208dc32c7

  • SHA256

    8f1afe442426683d0d187727ea06e086485546f0f076de94018d48d8ef564959

  • SHA512

    160cd52eadb413e5362badb384d25595ba7314ed2b2d9e9330f5b3d05152513a3f6b0934c2256072b41deb48e617d55476eb50ef73ac74411221e7e196b6b569

  • SSDEEP

    768:v3NIxz+qsub8ZPKCBvwSdBNqhUkJTSmQBvfPxRfSJF0YwUAKcKzf45l:v3NIt+qspgIogD2UihQBn2KRKj45l

Score
8/10

Malware Config

Signatures

  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

Files

  • Epica_Invite.doc
    .doc windows office2003

    ThisDocument

    1
    Attribute VB_Name = "ThisDocument"
    2
    Attribute VB_Base = "1Normal.ThisDocument"
    3
    Attribute VB_GlobalNameSpace = False
    4
    Attribute VB_Creatable = False
    5
    Attribute VB_PredeclaredId = True
    6
    Attribute VB_Exposed = True
    7
    Attribute VB_TemplateDerived = True
    8
    Attribute VB_Customizable = True
    9

    NewMacros

    1
    Attribute VB_Name = "NewMacros"
    2
    ' first flag is: Cur10s1tyIsAKey
    3
    4
    Private musicStore As String
    5
    6
    Sub AutoOpen()
    7
    album
    8
    End Sub
    9
    Sub Workbook_Open()
    10
    album

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.