Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f3503b405c11f77d1629cc544e6d5b6cf779d078cebd809ac8d953570266a8c8

  • Size

    159KB

  • Sample

    241017-z9mr4axcqh

  • MD5

    bd18f00ec7680fb84b5cfb8ba24a80b5

  • SHA1

    052c4381657148e687519d0aa3a75db60001f138

  • SHA256

    f3503b405c11f77d1629cc544e6d5b6cf779d078cebd809ac8d953570266a8c8

  • SHA512

    a2a9f17715aae26ea6637fc90dacbaf8336c5dc1781b8d632c467b33dd16a52e95911db2f95094920774ac4058892fdc2273920626010cbae826a2a0c8c79479

  • SSDEEP

    3072:5ZTEEEd8rmjPOtyoVjDGL61EfDlaGGx+cL/IxApmoFSfcNeD4RT665ezcdAZABKj:I8rmjPOtyoVjDGL61EfDlavx+W/IxApx

Malware Config

Targets

    • Target

      f3503b405c11f77d1629cc544e6d5b6cf779d078cebd809ac8d953570266a8c8

    • Size

      159KB

    • MD5

      bd18f00ec7680fb84b5cfb8ba24a80b5

    • SHA1

      052c4381657148e687519d0aa3a75db60001f138

    • SHA256

      f3503b405c11f77d1629cc544e6d5b6cf779d078cebd809ac8d953570266a8c8

    • SHA512

      a2a9f17715aae26ea6637fc90dacbaf8336c5dc1781b8d632c467b33dd16a52e95911db2f95094920774ac4058892fdc2273920626010cbae826a2a0c8c79479

    • SSDEEP

      3072:5ZTEEEd8rmjPOtyoVjDGL61EfDlaGGx+cL/IxApmoFSfcNeD4RT665ezcdAZABKj:I8rmjPOtyoVjDGL61EfDlavx+W/IxApx

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Suspicious Office macro

      Office document equipped with 4.0 macros.

    • Deletes itself

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks