Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
97577f16260e6f0a4aa45450e6a2a156_JaffaCakes118.doc
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
97577f16260e6f0a4aa45450e6a2a156_JaffaCakes118.doc
Resource
win10v2004-20240802-en
General
-
Target
97577f16260e6f0a4aa45450e6a2a156_JaffaCakes118
-
Size
243KB
-
MD5
97577f16260e6f0a4aa45450e6a2a156
-
SHA1
ba236bd03be3bbfbfd1898d6993c9321079fe0a8
-
SHA256
9bc77f6c5cd90159c6171fbf7e2131048b0e5d0dfd21cef3d8b3f086dffc6953
-
SHA512
f8ff8102b733c0feadae8fc50f903980ad5a7791e8c415969d18b7f222c4bd1e4cc6e089162c5f8d8fe86ebd6544798ff07c2ee44516a6da3a8903aee0c17377
-
SSDEEP
3072:UOw0pklIiuq73/IKBdsZMdSYdyu0O9iCF60:UO5pklIo73wAzUYQOpP
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
97577f16260e6f0a4aa45450e6a2a156_JaffaCakes118.doc .eml office polyglot
ThisDocument
UserForm1
UserForm2
UserForm3
UserForm4
UserForm5