Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1f30e3307152a738009666a6f3db4730

  • Size

    158KB

  • Sample

    231230-2x1vasgdcn

  • MD5

    1f30e3307152a738009666a6f3db4730

  • SHA1

    2ea868294d024ca94059e5f5fa10d1a793fa4d3a

  • SHA256

    f68c09e320004f91bd5041923e32ce42f25710782e02e2c3ce7c90819bdc98c8

  • SHA512

    9da1c8778434b87e889872420ef304b93cc09b370965644429bcd9f5d2102d1fb313f61cad702405d019086f1430d49b87ddc5a4cffb38670c370f2b3e42bcc6

  • SSDEEP

    3072:dHlTkdm3bGeAxidxVymd1xXPMU9VlUBWA6CFvA7bRCxAVIKKNB:dFTkeGKdxVyWxfMU3liWA6FsYq

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://biopaten.no/xeBP8Oj5/gg.html

xlm40.dropper

https://beartoothkawasaki.com/QJT19jhtwHt/gg.html

Targets

    • Target

      1f30e3307152a738009666a6f3db4730

    • Size

      158KB

    • MD5

      1f30e3307152a738009666a6f3db4730

    • SHA1

      2ea868294d024ca94059e5f5fa10d1a793fa4d3a

    • SHA256

      f68c09e320004f91bd5041923e32ce42f25710782e02e2c3ce7c90819bdc98c8

    • SHA512

      9da1c8778434b87e889872420ef304b93cc09b370965644429bcd9f5d2102d1fb313f61cad702405d019086f1430d49b87ddc5a4cffb38670c370f2b3e42bcc6

    • SSDEEP

      3072:dHlTkdm3bGeAxidxVymd1xXPMU9VlUBWA6CFvA7bRCxAVIKKNB:dFTkeGKdxVyWxfMU3liWA6FsYq

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks