Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
9c9013e611ebbbbdddaa4e0e01494262_JaffaCakes118.doc
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
9c9013e611ebbbbdddaa4e0e01494262_JaffaCakes118.doc
Resource
win10v2004-20240802-en
General
-
Target
9c9013e611ebbbbdddaa4e0e01494262_JaffaCakes118
-
Size
241KB
-
MD5
9c9013e611ebbbbdddaa4e0e01494262
-
SHA1
4f9a2643c7b3db7bfb47c955f83654cdbd35da79
-
SHA256
68c6883719fdb97cee4036fedfd965d88a683c1af9597b51a008180d2361f15d
-
SHA512
dd60b0554b95aaa7d5ca619af8e1a356a97e9a0505e9cd0ac384bc147861878ebbf35d8e4a96727554c1885ce96fbb46c6bc76ddafb2878d93b471fe491eccbd
-
SSDEEP
3072:gvw9HXPJguq73/IKBWyuMdSQHgJLrL2h2hrtc:gvKHXPJi73wA9UpJLX2IhS
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
9c9013e611ebbbbdddaa4e0e01494262_JaffaCakes118.doc .eml office polyglot
ThisDocument
UserForm1
UserForm2
UserForm3
UserForm4
UserForm5