Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0ed7cc0eea27802f94802f662b745906

  • Size

    36KB

  • Sample

    231230-fbwskahfb3

  • MD5

    0ed7cc0eea27802f94802f662b745906

  • SHA1

    04aeeb4d047b1e1dfa9ea858aa27aebf1ecfb8f0

  • SHA256

    da89c8f800d391b760a548f29bf0e811382992eb44c8c6fa55db2567c67ca2bf

  • SHA512

    cf7d405ac3b51f341dac85a51b56be1893e326859471098db8911f642b744e12f2db2a03032eb25566f6d8e3565c40d40a06f752004e62a34dba27b436cc73d5

  • SSDEEP

    768:5PqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJvEi2pwQv/fiNa6hE3jD:Rok3hbdlylKsgqopeJBWhZFGkE+cL2Nx

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://skill.fashion/wp-data.php

xlm40.dropper

https://syracuse.best/wp-data.php

Targets

    • Target

      0ed7cc0eea27802f94802f662b745906

    • Size

      36KB

    • MD5

      0ed7cc0eea27802f94802f662b745906

    • SHA1

      04aeeb4d047b1e1dfa9ea858aa27aebf1ecfb8f0

    • SHA256

      da89c8f800d391b760a548f29bf0e811382992eb44c8c6fa55db2567c67ca2bf

    • SHA512

      cf7d405ac3b51f341dac85a51b56be1893e326859471098db8911f642b744e12f2db2a03032eb25566f6d8e3565c40d40a06f752004e62a34dba27b436cc73d5

    • SSDEEP

      768:5PqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJvEi2pwQv/fiNa6hE3jD:Rok3hbdlylKsgqopeJBWhZFGkE+cL2Nx

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks