Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118

  • Size

    384KB

  • Sample

    240402-letp9sdb85

  • MD5

    88d95523bfdb6c3e9dd2d53476371e03

  • SHA1

    b8829131e080457718de53b1a1fb52f0d34105fc

  • SHA256

    8c25a253de665e9eed4321eb2a172e4bf0b0acbe78ef4365cfff9247e625260b

  • SHA512

    0cfacfc97ad8882a11ecec45ab34684644ce7a0e0d84bb6233265cff5ea5e2e158c5f969928da1551946e6b75bbb21250b295fdb127ac23b4fd2d4199f97802b

  • SSDEEP

    6144:Kk3hOdsylKlgryzc4bNhZF+E+W2knAb+AqmFUM9lz2KE8hBdXVoo5z9Nz/FDC5Gz:o5UMHq/88o5zJOcVLEP9iEtHli2M9fGa

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://18.195.143.183/8/8/ENP_5080010136520.exe

Targets

    • Target

      88d95523bfdb6c3e9dd2d53476371e03_JaffaCakes118

    • Size

      384KB

    • MD5

      88d95523bfdb6c3e9dd2d53476371e03

    • SHA1

      b8829131e080457718de53b1a1fb52f0d34105fc

    • SHA256

      8c25a253de665e9eed4321eb2a172e4bf0b0acbe78ef4365cfff9247e625260b

    • SHA512

      0cfacfc97ad8882a11ecec45ab34684644ce7a0e0d84bb6233265cff5ea5e2e158c5f969928da1551946e6b75bbb21250b295fdb127ac23b4fd2d4199f97802b

    • SSDEEP

      6144:Kk3hOdsylKlgryzc4bNhZF+E+W2knAb+AqmFUM9lz2KE8hBdXVoo5z9Nz/FDC5Gz:o5UMHq/88o5zJOcVLEP9iEtHli2M9fGa

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks