Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
38256f1877e291236a7c01ecceec7786_JaffaCakes118
-
Size
145KB
-
Sample
240512-ek1x7saf94
-
MD5
38256f1877e291236a7c01ecceec7786
-
SHA1
024e3fcdcacb942f9bb01311c4383fdb022d89d9
-
SHA256
fd79de4082ddd5855e8589bf379265cd31c83375bcce845eeae720d1f126f210
-
SHA512
058093c6265f931c2e862462ccb2cb519074174be5fadf9736b84e478e55b3a350a8e6b717ef24f3ea1e00aaa2fa7891487e5b070f806d558fe555fca3543f80
-
SSDEEP
1536:QqfejieBS2ac0W+ah3a0DSia8OhVhZBkhJHMLLgklDVV+d0Lu2EUkGpWoZ8Rn95R:Qjiev3DTalfrBtHQd+pWEoy5qoiWZKVD
Behavioral task
behavioral1
Sample
38256f1877e291236a7c01ecceec7786_JaffaCakes118.doc
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
38256f1877e291236a7c01ecceec7786_JaffaCakes118.doc
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
38256f1877e291236a7c01ecceec7786_JaffaCakes118
-
Size
145KB
-
MD5
38256f1877e291236a7c01ecceec7786
-
SHA1
024e3fcdcacb942f9bb01311c4383fdb022d89d9
-
SHA256
fd79de4082ddd5855e8589bf379265cd31c83375bcce845eeae720d1f126f210
-
SHA512
058093c6265f931c2e862462ccb2cb519074174be5fadf9736b84e478e55b3a350a8e6b717ef24f3ea1e00aaa2fa7891487e5b070f806d558fe555fca3543f80
-
SSDEEP
1536:QqfejieBS2ac0W+ah3a0DSia8OhVhZBkhJHMLLgklDVV+d0Lu2EUkGpWoZ8Rn95R:Qjiev3DTalfrBtHQd+pWEoy5qoiWZKVD
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
An obfuscated cmd.exe command-line is typically used to evade detection.
-