Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836

  • Size

    40KB

  • Sample

    241111-zqemdazjdj

  • MD5

    30b5df2d47784fac6571cff7fe322355

  • SHA1

    650375d95ef2f53146086ea7aa65043b25c7736b

  • SHA256

    b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836

  • SHA512

    9a7e45f281ada4f8fd235ba6f6c36df3bed43a6d28d651ef0dc13bfdd64011bdd6a206c0b7fb25a829cbbf8dc89923f5ff864867a305780dbe7a620cf748de58

  • SSDEEP

    768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgACCBn9kC+xbwcZfqG9tMvcVi1lQ:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/d4

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://easiercommunications.com/wp-content/w/

xlm40.dropper

http://dulichdichvu.net/libraries/QhtrjCZymLp5EbqOdpKk/

xlm40.dropper

https://www.whow.fr/wp-includes/H54Fgj0tG/

xlm40.dropper

http://genccagdas.com.tr/assets/TTHOm833iNn3BxT/

xlm40.dropper

http://heaventechnologies.com.pk/apitest/xdeAU0rx26LT9I/

xlm40.dropper

http://goonboy.com/goonie/bSFz7Av/

Targets

    • Target

      b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836

    • Size

      40KB

    • MD5

      30b5df2d47784fac6571cff7fe322355

    • SHA1

      650375d95ef2f53146086ea7aa65043b25c7736b

    • SHA256

      b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836

    • SHA512

      9a7e45f281ada4f8fd235ba6f6c36df3bed43a6d28d651ef0dc13bfdd64011bdd6a206c0b7fb25a829cbbf8dc89923f5ff864867a305780dbe7a620cf748de58

    • SSDEEP

      768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgACCBn9kC+xbwcZfqG9tMvcVi1lQ:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/d4

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks