Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

SP_Richiesta.doc

windows7-x64

10

SP_Richiesta.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05db58ff80dc4c4c5a900731ee9fae94_JaffaCakes118

  • Size

    330KB

  • Sample

    240428-xkjysseg2w

  • MD5

    05db58ff80dc4c4c5a900731ee9fae94

  • SHA1

    8c20ca9ca8823ca075469b3ba277e4124d5561c2

  • SHA256

    b2650ed8736f9951baa9fe5672ad2e95adda2bdb9bb0696bd4bdf7edea6a8393

  • SHA512

    f349c3bb669b398261921f512dc9c8ea613ec4436e6225f68d681ac29b140b756c14eec2c2f09c255c9bb3a666632c3bedcbcc23ae90357583db55bb20b4dfb2

  • SSDEEP

    3072:8IMb5VTn/iKFBr5Iwe43ntvTOakWLnepOIH6EQD81ZLVgYgFlZDE4Gz:8VT/iQBr5Iw/FkWVIHv9ZLVgpbZw9z

Score
10/10
macromacro_on_action

Malware Config

Targets

    • Target

      SP_Richiesta.doc

    • Size

      168KB

    • MD5

      073ea5db2eaf75947b6e9b67e438ef7b

    • SHA1

      15160e89985e0bea3bf3ce725c924fa16f47e15b

    • SHA256

      94c4eb4bf238b5fd68bad8b20829768bffed5e44eec1504c921fff8abe539756

    • SHA512

      0793427fdf97d9a08fa5b8f61d08f67286a77a0f4ce5b1ab03df80516ce88c1974cc7c1dbe16da2d5d8d8f6c45e75782bdd3f2eda77ca12a838bed376b0736d4

    • SSDEEP

      1536:mTNVczHkD9icmT+FFdZ+a9M9KfjJbkLDDQQQ0OXeBq3ni/yv4WY48+g/iXkIVVL5:mTn/iKFBr5Iwe43ntvTOakWLnepO

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • An obfuscated cmd.exe command-line is typically used to evade detection.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks