Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

7514c01da5...18.doc

windows7-x64

10

7514c01da5...18.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7514c01da515faf4c327dae34fa3fa05_JaffaCakes118

  • Size

    136KB

  • Sample

    240526-lslxkseh26

  • MD5

    7514c01da515faf4c327dae34fa3fa05

  • SHA1

    3fe84faf29d4accca4bfb7850a0c49c7cecab027

  • SHA256

    f5abc12da196850236b5a32fe7c2b36143b95aebe1faeea4494f4a3722d29ff7

  • SHA512

    6f015a15a2433a9ce5fc2729db7dbb49e23ec7739eab7b7722ca8dbd71a0cdc8f4e43490c6a7e1c236482c303a108316b9853eb2ed9e4c7e41b9e46492a24a71

  • SSDEEP

    1536:U7g81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9Se+Tw92IcvHjLGuj:/8GhDS0o9zTGOZD6EbzCdETwmHjLGuj

Score
10/10
macro

Malware Config

Targets

    • Target

      7514c01da515faf4c327dae34fa3fa05_JaffaCakes118

    • Size

      136KB

    • MD5

      7514c01da515faf4c327dae34fa3fa05

    • SHA1

      3fe84faf29d4accca4bfb7850a0c49c7cecab027

    • SHA256

      f5abc12da196850236b5a32fe7c2b36143b95aebe1faeea4494f4a3722d29ff7

    • SHA512

      6f015a15a2433a9ce5fc2729db7dbb49e23ec7739eab7b7722ca8dbd71a0cdc8f4e43490c6a7e1c236482c303a108316b9853eb2ed9e4c7e41b9e46492a24a71

    • SSDEEP

      1536:U7g81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9Se+Tw92IcvHjLGuj:/8GhDS0o9zTGOZD6EbzCdETwmHjLGuj

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks