Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    54842cc23dd56820a0ef54370779fcda_JaffaCakes118

  • Size

    73KB

  • Sample

    240331-ptr2rsca64

  • MD5

    54842cc23dd56820a0ef54370779fcda

  • SHA1

    b20cc81176aaedea82fd6537f9f50da163910890

  • SHA256

    41029841963dd63e4726ccc3bb012a5cd0e3ae47b1298692699d6d4704cca6f7

  • SHA512

    1af3f28046bd10af99acf027a6ad2f802f23dff63793f934ed79260456342724f833a6865ae1a996c4a5936d07ee769e204d18501de43a206986fe6b7b30d4ef

  • SSDEEP

    1536:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdf

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://thepunchlineexpose.com/Manager/AnyDesk.exe

Targets

    • Target

      54842cc23dd56820a0ef54370779fcda_JaffaCakes118

    • Size

      73KB

    • MD5

      54842cc23dd56820a0ef54370779fcda

    • SHA1

      b20cc81176aaedea82fd6537f9f50da163910890

    • SHA256

      41029841963dd63e4726ccc3bb012a5cd0e3ae47b1298692699d6d4704cca6f7

    • SHA512

      1af3f28046bd10af99acf027a6ad2f802f23dff63793f934ed79260456342724f833a6865ae1a996c4a5936d07ee769e204d18501de43a206986fe6b7b30d4ef

    • SSDEEP

      1536:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:xk3hOdsylKlgxopeiBNhZFGzE+cL2kdf

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks