Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    faktura577.xls

  • Size

    305KB

  • Sample

    240101-p1bncsdgb9

  • MD5

    4b0719d1907f7c4b5e599f2b5696329a

  • SHA1

    ca58cb833331af0f6e5783460b589ff60b0d7685

  • SHA256

    a77e9b7e7130bf95ead698825dc9500c11f08b156f4d1aa552da920ceaaefc6b

  • SHA512

    349f0ff915e7e9597ed917aec797117f82b92435327a38225aee123e2534d11d2ce614d1f3dc8b104f78f4b74161ab6efe05440feeae4a78225f12691cb186ff

  • SSDEEP

    6144:5xEtjPOtioVjZUGGnwfDlavx+W2QdAVsaViMr79VDLmCmL0hSrIAFXfA2kHNd+4g:2aViMH9VDNy1tOw4w1

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://shackowanadomena.top/calc.exe

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://shackowanadomena.top/calc.exe

Targets

    • Target

      faktura577.xls

    • Size

      305KB

    • MD5

      4b0719d1907f7c4b5e599f2b5696329a

    • SHA1

      ca58cb833331af0f6e5783460b589ff60b0d7685

    • SHA256

      a77e9b7e7130bf95ead698825dc9500c11f08b156f4d1aa552da920ceaaefc6b

    • SHA512

      349f0ff915e7e9597ed917aec797117f82b92435327a38225aee123e2534d11d2ce614d1f3dc8b104f78f4b74161ab6efe05440feeae4a78225f12691cb186ff

    • SSDEEP

      6144:5xEtjPOtioVjZUGGnwfDlavx+W2QdAVsaViMr79VDLmCmL0hSrIAFXfA2kHNd+4g:2aViMH9VDNy1tOw4w1

    Score
    10/10
    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

MITRE ATT&CK Enterprise v15

Tasks