Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

ac2b251fb7...b2.xls

windows7-x64

10

ac2b251fb7...b2.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac2b251fb7aa144307c7718160380cb2

  • Size

    178KB

  • Sample

    240228-sevqwsed64

  • MD5

    ac2b251fb7aa144307c7718160380cb2

  • SHA1

    12793377feecb4812ed60ec22eefbce6d2db3bd4

  • SHA256

    36f6bebf6d72d93823c099be1f465542dc18b3e6ce67a335baf9b6234993c93e

  • SHA512

    9b4710e681e27f75e571d8f2d3ff2c7a1ffd1e055fa444fabb6acd33f0576479ca317823a3af077bcf9eada32982a64d58fd4706fb4f777cae8c9a743ce01d12

  • SSDEEP

    3072:BOl6Nc7yRzs1H75wkZUgsCgI4ukoRWGN/XD4RetWVbrzQ704Tk9O8EJtXwIv4b0:cl6Nc7yRzs1H75wkZUgsCgI4ukoRWGNw

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      ac2b251fb7aa144307c7718160380cb2

    • Size

      178KB

    • MD5

      ac2b251fb7aa144307c7718160380cb2

    • SHA1

      12793377feecb4812ed60ec22eefbce6d2db3bd4

    • SHA256

      36f6bebf6d72d93823c099be1f465542dc18b3e6ce67a335baf9b6234993c93e

    • SHA512

      9b4710e681e27f75e571d8f2d3ff2c7a1ffd1e055fa444fabb6acd33f0576479ca317823a3af077bcf9eada32982a64d58fd4706fb4f777cae8c9a743ce01d12

    • SSDEEP

      3072:BOl6Nc7yRzs1H75wkZUgsCgI4ukoRWGN/XD4RetWVbrzQ704Tk9O8EJtXwIv4b0:cl6Nc7yRzs1H75wkZUgsCgI4ukoRWGNw

    Score
    10/10
    macroxlm

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Suspicious Office macro

      Office document equipped with 4.0 macros.

      macroxlm

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks