Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f71e8dfcb74e6e41a97bd6e9c60b5e67_JaffaCakes118

  • Size

    41KB

  • Sample

    240418-djpm4sae2x

  • MD5

    f71e8dfcb74e6e41a97bd6e9c60b5e67

  • SHA1

    6d78c0a0be761b764fb3c00eda747310e71bf5fc

  • SHA256

    a806686b567ee3c95a5f3467209e88b9ba62bf10f9783004873c802ac4f4cd1d

  • SHA512

    2651cd6f3c998b824b1b63d6e2f95ab53d922697cdd0f576883ea0830b728426773e797e88719ebeaa7e279ef5d6669ae9e494cc1f8bcbb506e773eababd37fd

  • SSDEEP

    768:OH69bfxnua2XpQotJQ/+/0VvhFqe/jAx+Ab7JJCgRd3TTZSxgfCIOW0Zngbc:+6Xua2a4yvhF1/ej3zCS3ZSxPZnR

Score
10/10

Malware Config

Targets

    • Target

      f71e8dfcb74e6e41a97bd6e9c60b5e67_JaffaCakes118

    • Size

      41KB

    • MD5

      f71e8dfcb74e6e41a97bd6e9c60b5e67

    • SHA1

      6d78c0a0be761b764fb3c00eda747310e71bf5fc

    • SHA256

      a806686b567ee3c95a5f3467209e88b9ba62bf10f9783004873c802ac4f4cd1d

    • SHA512

      2651cd6f3c998b824b1b63d6e2f95ab53d922697cdd0f576883ea0830b728426773e797e88719ebeaa7e279ef5d6669ae9e494cc1f8bcbb506e773eababd37fd

    • SSDEEP

      768:OH69bfxnua2XpQotJQ/+/0VvhFqe/jAx+Ab7JJCgRd3TTZSxgfCIOW0Zngbc:+6Xua2a4yvhF1/ej3zCS3ZSxPZnR

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks