Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118
-
Size
384KB
-
Sample
240402-letp9sdb85
-
MD5
88d95523bfdb6c3e9dd2d53476371e03
-
SHA1
b8829131e080457718de53b1a1fb52f0d34105fc
-
SHA256
8c25a253de665e9eed4321eb2a172e4bf0b0acbe78ef4365cfff9247e625260b
-
SHA512
0cfacfc97ad8882a11ecec45ab34684644ce7a0e0d84bb6233265cff5ea5e2e158c5f969928da1551946e6b75bbb21250b295fdb127ac23b4fd2d4199f97802b
-
SSDEEP
6144:Kk3hOdsylKlgryzc4bNhZF+E+W2knAb+AqmFUM9lz2KE8hBdXVoo5z9Nz/FDC5Gz:o5UMHq/88o5zJOcVLEP9iEtHli2M9fGa
Behavioral task
behavioral1
Sample
88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118.xls
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118.xls
Resource
win10v2004-20240226-en
Malware Config
Extracted
http://18.195.143.183/8/8/ENP_5080010136520.exe
Targets
-
-
Target
88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118
-
Size
384KB
-
MD5
88d95523bfdb6c3e9dd2d53476371e03
-
SHA1
b8829131e080457718de53b1a1fb52f0d34105fc
-
SHA256
8c25a253de665e9eed4321eb2a172e4bf0b0acbe78ef4365cfff9247e625260b
-
SHA512
0cfacfc97ad8882a11ecec45ab34684644ce7a0e0d84bb6233265cff5ea5e2e158c5f969928da1551946e6b75bbb21250b295fdb127ac23b4fd2d4199f97802b
-
SSDEEP
6144:Kk3hOdsylKlgryzc4bNhZF+E+W2knAb+AqmFUM9lz2KE8hBdXVoo5z9Nz/FDC5Gz:o5UMHq/88o5zJOcVLEP9iEtHli2M9fGa
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-