Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04102024_1446_02102024_HGI887Y6T009AK.doc.lz

  • Size

    787KB

  • MD5

    2654ff35b3331c6dc936c81ba2f68413

  • SHA1

    22266814712decec4c4125562ba0e22236038a47

  • SHA256

    c43ca75d4422c4c10b084571a15e6532ee6b82acb59f7c19ca0ec4b6bb6830a9

  • SHA512

    7e4e10848e2ed21809d77503658d390bc02654be4fa6c2916e9b48c2b89b30dee0b78511414337090c3ecc24ab9c08e0bafd4d0397b411fe404c906bdd406c78

  • SSDEEP

    12288:Fu6eZn2vfrgAp9wMoR4e3ZRkNoZDJbmMOgyvqxJeNEru+U0pkd4jCGcJKJwUq:kLGv+4eDUMOgyS7eerrpw4jChkwUq

Score
5/10
upx

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 04102024_1446_02102024_HGI887Y6T009AK.doc.lz
    .zip

    Password: infected

  • HGI887Y6T009AK.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections