Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
24e3d1f12230ec71b9b33a187c74a225_JaffaCakes118
-
Size
74KB
-
Sample
240508-pxtd1adb21
-
MD5
24e3d1f12230ec71b9b33a187c74a225
-
SHA1
aa1e7cd0d0f8062c7fa7a707f41fb34eab728ece
-
SHA256
a4cb5354db88030c3a53d1cfa182dad0f6d41647aa0afa08b36867b5eacfe26a
-
SHA512
aeb50801a04d0a130b013dda2743d83f2001f476b3c049333d0e3f0e253e790cede4bbdc7ccd3b17c3ef863c90d3f2a0592fd9ebfbbd6beafe36e66b4bc7d0b0
-
SSDEEP
1536:FqjiclPFDId6zbLbfMyje+L682EvWwe7M3AZD2NCaHZeDi07pqFo273tc8CF/6BA:0jiHYLfM8df2ueNZD/8ZmimaWv/6BA
Behavioral task
behavioral1
Sample
awb_6959662033_invoice-receipt.xlsm
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
awb_6959662033_invoice-receipt.xlsm
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
awb_6959662033_invoice-receipt.xlsm
-
Size
78KB
-
MD5
d4699d9968af7be6602db7debab17012
-
SHA1
979725178c6e0b5cfb6c54db508c52135db3b383
-
SHA256
f8bcbdcee35ecafe53c58b8a35bf93db799e7a42136ecb7332d636745744c400
-
SHA512
ab1bfa0578881db98142998e851d4d6426a8378acd31bf45c1109e4ca521321bd415db1fcc9ddd14ceab06b6407f6e1b6e880842077ce86c71fdd88ee680279f
-
SSDEEP
1536:lIET3Vt0vll71hKeq7xe1Lxlv7L4e7aMJHXD2Oum7R9eh:CExtOXKel1Lrf4e7amXD2jmdgh
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Drops file in System32 directory
-