Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
ba8f984d13c58fe745f8e184f7c74cd07d9e38273b6c730780da93e36b3dfd0f.xls
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
ba8f984d13c58fe745f8e184f7c74cd07d9e38273b6c730780da93e36b3dfd0f.xls
Resource
win10v2004-20240802-en
General
-
Target
ba8f984d13c58fe745f8e184f7c74cd07d9e38273b6c730780da93e36b3dfd0f
-
Size
58KB
-
MD5
b8aa95fdf62ea915bbf17ae13d405db0
-
SHA1
4ae7a1950f237cf0145eeac56d2df887a629eb9c
-
SHA256
ba8f984d13c58fe745f8e184f7c74cd07d9e38273b6c730780da93e36b3dfd0f
-
SHA512
d46906ba200800d6b989391ad96590c319555f90fd608a5cd02c8ae98b8ca45cef8971fe9e3a4a2dc233b32a3c5901ff4c464f6336cb912b63e0845010fc1ad6
-
SSDEEP
384:XQGZ8hWC/9zihXcDiXfGcXkp2iS9yFH0zAV3yaU3ejCnPny7zNc//yjYZOnAx3dy:XFIzihXcDiZXkpDeAZZhG//7m+s
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
ba8f984d13c58fe745f8e184f7c74cd07d9e38273b6c730780da93e36b3dfd0f.xls windows office2003
Kangatang
ThisWorkbook