Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_fa2ced71ff35cc1121aa070a956ecdc4

  • Size

    236KB

  • Sample

    250214-vydb3avmgp

  • MD5

    fa2ced71ff35cc1121aa070a956ecdc4

  • SHA1

    783b36ae9e3addcde459b8b768e4be512de84637

  • SHA256

    3006c6ba794aab565991c56eb1933d093db7f59eb9148cf2b14d15b4c3e633fe

  • SHA512

    b526e3e5451b4e4d3db6319b59ed55d0c509ea4fdcd033fa1c361a3a1547620799dca9be33af8ab2ac5c990fc733c311890c49b2be6f312bf2f7743945d21cec

  • SSDEEP

    3072:rXSnpywl9Nv3c49nSMhMwm0uusFxyyjjpNRCqhVgfnM4qiTy:Toywl9Na/XzOzG

Malware Config

Targets

    • Target

      JaffaCakes118_fa2ced71ff35cc1121aa070a956ecdc4

    • Size

      236KB

    • MD5

      fa2ced71ff35cc1121aa070a956ecdc4

    • SHA1

      783b36ae9e3addcde459b8b768e4be512de84637

    • SHA256

      3006c6ba794aab565991c56eb1933d093db7f59eb9148cf2b14d15b4c3e633fe

    • SHA512

      b526e3e5451b4e4d3db6319b59ed55d0c509ea4fdcd033fa1c361a3a1547620799dca9be33af8ab2ac5c990fc733c311890c49b2be6f312bf2f7743945d21cec

    • SSDEEP

      3072:rXSnpywl9Nv3c49nSMhMwm0uusFxyyjjpNRCqhVgfnM4qiTy:Toywl9Na/XzOzG

    • Detected google phishing page

    • Downloads MZ/PE file

    • A potential corporate email address has been identified in the URL: [email protected]

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks