Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

d6b05f99d5...9a.xls

windows7-x64

10

d6b05f99d5...9a.xls

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6b05f99d5f1aeefdbfa2a90efc6599a

  • Size

    124KB

  • Sample

    240319-vw3tyaab8s

  • MD5

    d6b05f99d5f1aeefdbfa2a90efc6599a

  • SHA1

    07168be1e7dcd6ab4d5517255f7516c5059e1140

  • SHA256

    38d9bebdb5bd6901ec16315640333c4dd136db87edc47fe32c4f2550c887038f

  • SHA512

    39f3a8694f854824b58fc2dc99dfe4dd63d6b9276935b8be83e276a3a8fc47b02b2cddd1857f6d6b389808053627696adea02dcd3016a4570c48954eeed459b8

  • SSDEEP

    1536:A+++ZmDVQtb88zcJLP1QvkezSsfeqmqmbkmYqORgpa2j/E8hWVbrzQ7IQOkbA2s8:uGRgWVbrzQ7I9kZABJtXwp

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      d6b05f99d5f1aeefdbfa2a90efc6599a

    • Size

      124KB

    • MD5

      d6b05f99d5f1aeefdbfa2a90efc6599a

    • SHA1

      07168be1e7dcd6ab4d5517255f7516c5059e1140

    • SHA256

      38d9bebdb5bd6901ec16315640333c4dd136db87edc47fe32c4f2550c887038f

    • SHA512

      39f3a8694f854824b58fc2dc99dfe4dd63d6b9276935b8be83e276a3a8fc47b02b2cddd1857f6d6b389808053627696adea02dcd3016a4570c48954eeed459b8

    • SSDEEP

      1536:A+++ZmDVQtb88zcJLP1QvkezSsfeqmqmbkmYqORgpa2j/E8hWVbrzQ7IQOkbA2s8:uGRgWVbrzQ7I9kZABJtXwp

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks