Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836
-
Size
40KB
-
Sample
241111-zqemdazjdj
-
MD5
30b5df2d47784fac6571cff7fe322355
-
SHA1
650375d95ef2f53146086ea7aa65043b25c7736b
-
SHA256
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836
-
SHA512
9a7e45f281ada4f8fd235ba6f6c36df3bed43a6d28d651ef0dc13bfdd64011bdd6a206c0b7fb25a829cbbf8dc89923f5ff864867a305780dbe7a620cf748de58
-
SSDEEP
768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgACCBn9kC+xbwcZfqG9tMvcVi1lQ:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/d4
Behavioral task
behavioral1
Sample
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836.xls
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836.xls
Resource
win10v2004-20241007-en
Malware Config
Extracted
http://easiercommunications.com/wp-content/w/
http://dulichdichvu.net/libraries/QhtrjCZymLp5EbqOdpKk/
https://www.whow.fr/wp-includes/H54Fgj0tG/
http://genccagdas.com.tr/assets/TTHOm833iNn3BxT/
http://heaventechnologies.com.pk/apitest/xdeAU0rx26LT9I/
http://goonboy.com/goonie/bSFz7Av/
Targets
-
-
Target
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836
-
Size
40KB
-
MD5
30b5df2d47784fac6571cff7fe322355
-
SHA1
650375d95ef2f53146086ea7aa65043b25c7736b
-
SHA256
b118f777597d642f98a266e8366ec45b0ad5ad9438de076b0cd42c0be8849836
-
SHA512
9a7e45f281ada4f8fd235ba6f6c36df3bed43a6d28d651ef0dc13bfdd64011bdd6a206c0b7fb25a829cbbf8dc89923f5ff864867a305780dbe7a620cf748de58
-
SSDEEP
768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgACCBn9kC+xbwcZfqG9tMvcVi1lQ:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/d4
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-