Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    21f040669eb771400b2997f420fb3308

  • Size

    36KB

  • Sample

    231231-aybs1sgafl

  • MD5

    21f040669eb771400b2997f420fb3308

  • SHA1

    a76a991759f2ae223327d5f1c98034cd7975fbec

  • SHA256

    91efa2150ed51bfebb3ea582d562a3f349bfa179f0c8e384d7a576fc37dd994b

  • SHA512

    de6e823338966e56b7f20407373c50a4c555c828364fdac219bef0882493fa5f93a2b69d31b1062119a07d01a289121bd3b9793d47836013543b865761627457

  • SSDEEP

    768:EPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJvharyoPy80J:gok3hbdlylKsgqopeJBWhZFGkE+cL2N0

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://markens.online/wp-data.php

xlm40.dropper

https://statedauto.com/wp-data.php

Targets

    • Target

      21f040669eb771400b2997f420fb3308

    • Size

      36KB

    • MD5

      21f040669eb771400b2997f420fb3308

    • SHA1

      a76a991759f2ae223327d5f1c98034cd7975fbec

    • SHA256

      91efa2150ed51bfebb3ea582d562a3f349bfa179f0c8e384d7a576fc37dd994b

    • SHA512

      de6e823338966e56b7f20407373c50a4c555c828364fdac219bef0882493fa5f93a2b69d31b1062119a07d01a289121bd3b9793d47836013543b865761627457

    • SSDEEP

      768:EPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJvharyoPy80J:gok3hbdlylKsgqopeJBWhZFGkE+cL2N0

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks