Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

fb3a9e3a01...18.doc

windows7-x64

10

fb3a9e3a01...18.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb3a9e3a017ea8828862c0e7e19dfbd1_JaffaCakes118

  • Size

    150KB

  • Sample

    240928-bkv56sygnp

  • MD5

    fb3a9e3a017ea8828862c0e7e19dfbd1

  • SHA1

    50981141c50ed8ffefebf6f23f175642209d34fe

  • SHA256

    c324a40e890a6801232b6e9e315729e8407f18114a08a99549f78e8bf8382c22

  • SHA512

    8e674de4ba51d5f631bcb337ddc420b9e6a233cb001986caa3f03eebadce864b13a76ee3c1cf2eff02db02eaa4f9ec47a8e74a9e94970282dea0328319e54177

  • SSDEEP

    1536:TJVnK90GM9xuXFEr4Zx50zkGcclJvahtqAGHXiNL0CMdfFB6Om:TfCMbu1Ty+crSmXiNBUfFB6Om

Score
10/10
discovery

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://jubilantenterprise.com/wp-admin/Mj/
exe.dropper

http://brycebrumley.com/wp-admin/lj/
exe.dropper

http://aprendiendoganasdigital.com/wp-admin/r/
exe.dropper

http://mymorninglove.com/wp-admin/acv/
exe.dropper

http://shivam-aggarwal.com/cgi-bin/Zr/
exe.dropper

https://originalsalonqatar.com/wp-admin/lS0/
exe.dropper

http://aigtreyas.com/wp-content/p/

Targets

    • Target

      fb3a9e3a017ea8828862c0e7e19dfbd1_JaffaCakes118

    • Size

      150KB

    • MD5

      fb3a9e3a017ea8828862c0e7e19dfbd1

    • SHA1

      50981141c50ed8ffefebf6f23f175642209d34fe

    • SHA256

      c324a40e890a6801232b6e9e315729e8407f18114a08a99549f78e8bf8382c22

    • SHA512

      8e674de4ba51d5f631bcb337ddc420b9e6a233cb001986caa3f03eebadce864b13a76ee3c1cf2eff02db02eaa4f9ec47a8e74a9e94970282dea0328319e54177

    • SSDEEP

      1536:TJVnK90GM9xuXFEr4Zx50zkGcclJvahtqAGHXiNL0CMdfFB6Om:TfCMbu1Ty+crSmXiNBUfFB6Om

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks