Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
58d5780cfb5c290fdd10d9359a438aff_JaffaCakes118
-
Size
73KB
-
Sample
240331-ve5l7sfh65
-
MD5
58d5780cfb5c290fdd10d9359a438aff
-
SHA1
6283eac654d5883b90241db9dff2571ca3de0a7f
-
SHA256
79aa91c1856cbb85044fdc3c8ef28b19f30ff3951c4fd94a4d40ebaf86f0b912
-
SHA512
a228e3c48f1ce2d5bceaace7352d939725c15150f35c110a750b2e8e3bb53dc28786084738e1b777a11f68b3fdce017db3faf4c66bd07b971fcb947b67c8dfa9
-
SSDEEP
1536:zk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:zk3hOdsylKlgxopeiBNhZFGzE+cL2kdf
Behavioral task
behavioral1
Sample
58d5780cfb5c290fdd10d9359a438aff_JaffaCakes118.xls
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
58d5780cfb5c290fdd10d9359a438aff_JaffaCakes118.xls
Resource
win10v2004-20240226-en
Malware Config
Extracted
http://thepunchlineexpose.com/Manager/AnyDesk.exe
Targets
-
-
Target
58d5780cfb5c290fdd10d9359a438aff_JaffaCakes118
-
Size
73KB
-
MD5
58d5780cfb5c290fdd10d9359a438aff
-
SHA1
6283eac654d5883b90241db9dff2571ca3de0a7f
-
SHA256
79aa91c1856cbb85044fdc3c8ef28b19f30ff3951c4fd94a4d40ebaf86f0b912
-
SHA512
a228e3c48f1ce2d5bceaace7352d939725c15150f35c110a750b2e8e3bb53dc28786084738e1b777a11f68b3fdce017db3faf4c66bd07b971fcb947b67c8dfa9
-
SSDEEP
1536:zk3hOdsylKlgxopeiBNhZFGzE+cL2kdA34zI0ScDNzmVQyrnHRBoESK4nceC7r9O:zk3hOdsylKlgxopeiBNhZFGzE+cL2kdf
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-