Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

cleu.cmd

windows7-x64

8

cleu.cmd

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cleu.cmD

  • Size

    988KB

  • Sample

    241002-23y8nawbjb

  • MD5

    4b619d1b2eba89f41c99eeb30c2597e1

  • SHA1

    e0277e4a50157216f8b9097a09e4e5a467502480

  • SHA256

    9abce41989e1cd1fcab80cf1492400663b320cc54dcebeacfcc123ab37ba46d2

  • SHA512

    86d7e3a2999752d96f51737e4b4b1b28d05659a44d1fb1a6c9d6c37385f63a447cf6a87bc6954cfb2306ed381dfdcf0e20ccfa5aca61ba81d81794e85dfad581

  • SSDEEP

    6144:6q3RwWskGLdKyqUyRaqFHMwdrSKVDK+abD0JkaRb/w+wsY/VFqXdMIEiiiiljAme:65rbg/E1Rg8j/p2

Score
10/10
discoveryexecution

Malware Config

Targets

    • Target

      cleu.cmD

    • Size

      988KB

    • MD5

      4b619d1b2eba89f41c99eeb30c2597e1

    • SHA1

      e0277e4a50157216f8b9097a09e4e5a467502480

    • SHA256

      9abce41989e1cd1fcab80cf1492400663b320cc54dcebeacfcc123ab37ba46d2

    • SHA512

      86d7e3a2999752d96f51737e4b4b1b28d05659a44d1fb1a6c9d6c37385f63a447cf6a87bc6954cfb2306ed381dfdcf0e20ccfa5aca61ba81d81794e85dfad581

    • SSDEEP

      6144:6q3RwWskGLdKyqUyRaqFHMwdrSKVDK+abD0JkaRb/w+wsY/VFqXdMIEiiiiljAme:65rbg/E1Rg8j/p2

    Score
    10/10
    discoveryexecution

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks