Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
9bfa07d40c837fd3a4fb4a7dbdfd058b_JaffaCakes118.doc
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
9bfa07d40c837fd3a4fb4a7dbdfd058b_JaffaCakes118.doc
Resource
win10v2004-20240802-en
General
-
Target
9bfa07d40c837fd3a4fb4a7dbdfd058b_JaffaCakes118
-
Size
239KB
-
MD5
9bfa07d40c837fd3a4fb4a7dbdfd058b
-
SHA1
eef867b53ec53f7df7483bc895cc063e6c585d27
-
SHA256
5d64009a7406933e47907c268730375d04872294a6f87853a1d4f464d113608e
-
SHA512
22dfe970ea33d914849ef8e4282a81e8b1b0a7d67f7de79025353f5f20fe977ebb053cf9cc2199e521a2228a58bfa3a78e35858259b1d1e7f04285864f02b16a
-
SSDEEP
1536:AterU1wDv/6MaETOgnHJcIKBC5bvzhQHrTP0yJK/dRYof35FF3rKCIAfMmlL:A/wDvWETOgnHJcIKBs7OQdS02YL
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
9bfa07d40c837fd3a4fb4a7dbdfd058b_JaffaCakes118.doc .eml office polyglot
ThisDocument
UserForm1
UserForm2
UserForm3
UserForm4
UserForm5