Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    87b2f6337fbea5ee3f10eb1b210dd795_JaffaCakes118

  • Size

    62KB

  • Sample

    240402-kfn1qscd62

  • MD5

    87b2f6337fbea5ee3f10eb1b210dd795

  • SHA1

    200a86d5e4527e072ffe7a2059b762253289ae69

  • SHA256

    8811a7bfc8b36649308ae32e37c3cfcd0e1bf700f34988bb9c7028a7d367d894

  • SHA512

    2bf42f008cb428945d2af2ba8b8c207af1f302ae536456d58d4d4c3e0fe0f53b18b1bb5ab0aaf8451a2dc2b1a36cbd33ad84999c5653730cfa40180dfa54a285

  • SSDEEP

    192:EKX63qOaEfhODL4k5yx2eyViSgXruCv8pT+GLFaMMQZxN4Z7LlVQw/Sf:K6gf8DL4SwpXrLv85+GRhMQvN4xJ/Sf

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

https://www.bitly.com/ajdwwrufqwehjwijjd

Targets

    • Target

      87b2f6337fbea5ee3f10eb1b210dd795_JaffaCakes118

    • Size

      62KB

    • MD5

      87b2f6337fbea5ee3f10eb1b210dd795

    • SHA1

      200a86d5e4527e072ffe7a2059b762253289ae69

    • SHA256

      8811a7bfc8b36649308ae32e37c3cfcd0e1bf700f34988bb9c7028a7d367d894

    • SHA512

      2bf42f008cb428945d2af2ba8b8c207af1f302ae536456d58d4d4c3e0fe0f53b18b1bb5ab0aaf8451a2dc2b1a36cbd33ad84999c5653730cfa40180dfa54a285

    • SSDEEP

      192:EKX63qOaEfhODL4k5yx2eyViSgXruCv8pT+GLFaMMQZxN4Z7LlVQw/Sf:K6gf8DL4SwpXrLv85+GRhMQvN4xJ/Sf

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks