Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8bc72461a962bf7ca0df4c69f3b3f16b_JaffaCakes118

  • Size

    58KB

  • Sample

    240811-ytv8vswakn

  • MD5

    8bc72461a962bf7ca0df4c69f3b3f16b

  • SHA1

    0afab595bfc2ea557743caa482684451beb7ef8c

  • SHA256

    8fbf1590771243d6acff1df44382a63b7cd5ef14c0c3d0e0b52129b415058115

  • SHA512

    28ba24fa41259fb10283db225788228e3fed82961398cad81b9e3457a2db2ef89f721672807ce1cbe78e5abbcbc16320650a8eb20eff335cd673088b97a47d35

  • SSDEEP

    1536:Oihz0DewjEXWfCDIM/V5xtezEsi8OUM+tfNaIZEpqpXouX:Oihz0DewjEXWfCDIM/V5xtezEsi8OUM+

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://www.psicheaurora.it/fanta/download.php

Targets

    • Target

      8bc72461a962bf7ca0df4c69f3b3f16b_JaffaCakes118

    • Size

      58KB

    • MD5

      8bc72461a962bf7ca0df4c69f3b3f16b

    • SHA1

      0afab595bfc2ea557743caa482684451beb7ef8c

    • SHA256

      8fbf1590771243d6acff1df44382a63b7cd5ef14c0c3d0e0b52129b415058115

    • SHA512

      28ba24fa41259fb10283db225788228e3fed82961398cad81b9e3457a2db2ef89f721672807ce1cbe78e5abbcbc16320650a8eb20eff335cd673088b97a47d35

    • SSDEEP

      1536:Oihz0DewjEXWfCDIM/V5xtezEsi8OUM+tfNaIZEpqpXouX:Oihz0DewjEXWfCDIM/V5xtezEsi8OUM+

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Enterprise v15

Tasks