Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    24e3d1f12230ec71b9b33a187c74a225_JaffaCakes118

  • Size

    74KB

  • Sample

    240508-pxtd1adb21

  • MD5

    24e3d1f12230ec71b9b33a187c74a225

  • SHA1

    aa1e7cd0d0f8062c7fa7a707f41fb34eab728ece

  • SHA256

    a4cb5354db88030c3a53d1cfa182dad0f6d41647aa0afa08b36867b5eacfe26a

  • SHA512

    aeb50801a04d0a130b013dda2743d83f2001f476b3c049333d0e3f0e253e790cede4bbdc7ccd3b17c3ef863c90d3f2a0592fd9ebfbbd6beafe36e66b4bc7d0b0

  • SSDEEP

    1536:FqjiclPFDId6zbLbfMyje+L682EvWwe7M3AZD2NCaHZeDi07pqFo273tc8CF/6BA:0jiHYLfM8df2ueNZD/8ZmimaWv/6BA

Score
10/10

Malware Config

Targets

    • Target

      awb_6959662033_invoice-receipt.xlsm

    • Size

      78KB

    • MD5

      d4699d9968af7be6602db7debab17012

    • SHA1

      979725178c6e0b5cfb6c54db508c52135db3b383

    • SHA256

      f8bcbdcee35ecafe53c58b8a35bf93db799e7a42136ecb7332d636745744c400

    • SHA512

      ab1bfa0578881db98142998e851d4d6426a8378acd31bf45c1109e4ca521321bd415db1fcc9ddd14ceab06b6407f6e1b6e880842077ce86c71fdd88ee680279f

    • SSDEEP

      1536:lIET3Vt0vll71hKeq7xe1Lxlv7L4e7aMJHXD2Oum7R9eh:CExtOXKel1Lrf4e7amXD2jmdgh

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks