Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
7d393ae8a82f57852a297ea8e69dc9de_JaffaCakes118
-
Size
89KB
-
Sample
240528-rceq8ahe22
-
MD5
7d393ae8a82f57852a297ea8e69dc9de
-
SHA1
58bb7ad3f15e729de396b8e95e63c74fa1e75709
-
SHA256
6fa729cb21f250ddb6ac50c065e6b1a76316db047d01f1c5928816523d51a49a
-
SHA512
d3e0f5897ef558405ce605ac4ca5f5462591a5937ed314bbbb6217ec36fba017ac50fd09560589446e299db8946a0550b8d25200546e16f5146e32d986c289a5
-
SSDEEP
1536:zP67+jDPFvNsnJ1kPxNZIbxpIe8k+ong3n37wPwGuyUZX6fPxQ0JRB:zi7+jrtQ8pbIrf8Ug3n3iuJxOxZJRB
Behavioral task
behavioral1
Sample
7d393ae8a82f57852a297ea8e69dc9de_JaffaCakes118.docm
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
7d393ae8a82f57852a297ea8e69dc9de_JaffaCakes118.docm
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
7d393ae8a82f57852a297ea8e69dc9de_JaffaCakes118
-
Size
89KB
-
MD5
7d393ae8a82f57852a297ea8e69dc9de
-
SHA1
58bb7ad3f15e729de396b8e95e63c74fa1e75709
-
SHA256
6fa729cb21f250ddb6ac50c065e6b1a76316db047d01f1c5928816523d51a49a
-
SHA512
d3e0f5897ef558405ce605ac4ca5f5462591a5937ed314bbbb6217ec36fba017ac50fd09560589446e299db8946a0550b8d25200546e16f5146e32d986c289a5
-
SSDEEP
1536:zP67+jDPFvNsnJ1kPxNZIbxpIe8k+ong3n37wPwGuyUZX6fPxQ0JRB:zi7+jrtQ8pbIrf8Ug3n3iuJxOxZJRB
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-
Process spawned suspicious child process
This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
-