Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
54842cc23dd56820a0ef54370779fcda_JaffaCakes118
-
Size
73KB
-
Sample
240331-ptr2rsca64
-
MD5
54842cc23dd56820a0ef54370779fcda
-
SHA1
b20cc81176aaedea82fd6537f9f50da163910890
-
SHA256
41029841963dd63e4726ccc3bb012a5cd0e3ae47b1298692699d6d4704cca6f7
-
SHA512
1af3f28046bd10af99acf027a6ad2f802f23dff63793f934ed79260456342724f833a6865ae1a996c4a5936d07ee769e204d18501de43a206986fe6b7b30d4ef
-
SSDEEP
1536:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdf
Behavioral task
behavioral1
Sample
54842cc23dd56820a0ef54370779fcda_JaffaCakes118.xls
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
54842cc23dd56820a0ef54370779fcda_JaffaCakes118.xls
Resource
win10v2004-20240226-en
Malware Config
Extracted
http://thepunchlineexpose.com/Manager/AnyDesk.exe
Targets
-
-
Target
54842cc23dd56820a0ef54370779fcda_JaffaCakes118
-
Size
73KB
-
MD5
54842cc23dd56820a0ef54370779fcda
-
SHA1
b20cc81176aaedea82fd6537f9f50da163910890
-
SHA256
41029841963dd63e4726ccc3bb012a5cd0e3ae47b1298692699d6d4704cca6f7
-
SHA512
1af3f28046bd10af99acf027a6ad2f802f23dff63793f934ed79260456342724f833a6865ae1a996c4a5936d07ee769e204d18501de43a206986fe6b7b30d4ef
-
SSDEEP
1536:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdf
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-