Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1
-
Size
734KB
-
Sample
241224-l4x4zsvjg1
-
MD5
ad0871c1aa964d2617379e8424091e83
-
SHA1
0da34d9fc8f474dcc0c871c7626fa6ffa350250a
-
SHA256
b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1
-
SHA512
b6a44495ff96ac032a48a497c6d63d69f2393eef666751f3ac0ec8024d37155ff4f0f1ede906a5c3299d2d7f369a25912606e7c3a4019f70727944689fe85a77
-
SSDEEP
12288:1/wxxwwHubxxwxx8xxwWxIwwwwwwwLxxewxwxxwSwAxxxwwwwwwwwwwwwwbxtwwI:fFWGyBpLepNnnWJ
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1.ps1
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
JaffaCakes118_b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1.ps1
Resource
win10v2004-20241007-en
Malware Config
Extracted
metasploit
windows/download_exec
http://157.230.184.142:443/ST/TWGRYKf0/d/du92w/RUk/Z2l.htm
Targets
-
-
Target
JaffaCakes118_b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1
-
Size
734KB
-
MD5
ad0871c1aa964d2617379e8424091e83
-
SHA1
0da34d9fc8f474dcc0c871c7626fa6ffa350250a
-
SHA256
b6c806fccfeb1bae95a4f02a14b5d1676df10166d7fda4e6a053d4e4bf931fe1
-
SHA512
b6a44495ff96ac032a48a497c6d63d69f2393eef666751f3ac0ec8024d37155ff4f0f1ede906a5c3299d2d7f369a25912606e7c3a4019f70727944689fe85a77
-
SSDEEP
12288:1/wxxwwHubxxwxx8xxwWxIwwwwwwwLxxewxwxxwSwAxxxwwwwwwwwwwwwwbxtwwI:fFWGyBpLepNnnWJ
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Metasploit family
-