Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

SHIPPING D...DF.vbs

windows7-x64

8

SHIPPING D...DF.vbs

windows10-1703-x64

8

SHIPPING D...DF.vbs

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SHIPPING DOCUMENT_PDF.vbs

  • Size

    34KB

  • Sample

    240508-kpj35sef73

  • MD5

    a6b12f631b09eb34cca4e10fbf1c7439

  • SHA1

    0aacba2d2405b2cf27dc9faa06669c4f381c1d9a

  • SHA256

    3161d5d0a756aeaf55bd427ec30f35e7a2cb307d88e36bddfd0dfebedacdf450

  • SHA512

    76b40ad860e40028af3878c09d2160fc88ee5715afae412c5e8a1d11233bdc1ae459978b00ba1ff0d1eed638a396ec973130a009523886088e1c81019a64aadb

  • SSDEEP

    384:XE/p5dFHav1y1TlJ+D3mrSh9sKrhtkdd/jJJEhMkCqB0HTP7/JQ:0/pRXb5Wn9rhtkdd/EhM3DxQ

Score
8/10

Malware Config

Targets

    • Target

      SHIPPING DOCUMENT_PDF.vbs

    • Size

      34KB

    • MD5

      a6b12f631b09eb34cca4e10fbf1c7439

    • SHA1

      0aacba2d2405b2cf27dc9faa06669c4f381c1d9a

    • SHA256

      3161d5d0a756aeaf55bd427ec30f35e7a2cb307d88e36bddfd0dfebedacdf450

    • SHA512

      76b40ad860e40028af3878c09d2160fc88ee5715afae412c5e8a1d11233bdc1ae459978b00ba1ff0d1eed638a396ec973130a009523886088e1c81019a64aadb

    • SSDEEP

      384:XE/p5dFHav1y1TlJ+D3mrSh9sKrhtkdd/jJJEhMkCqB0HTP7/JQ:0/pRXb5Wn9rhtkdd/EhM3DxQ

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks