Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    da7662fc079f089cefe7aebadf311efd_JaffaCakes118

  • Size

    128KB

  • Sample

    240405-waeewsab7z

  • MD5

    da7662fc079f089cefe7aebadf311efd

  • SHA1

    c169aeeafa21b785a030a0e2159e0e75bb263f47

  • SHA256

    18bac69ca9f61fa36e49d2fbdb4015dcdf9791d9125cc45d5970fde1d70dd801

  • SHA512

    0248afdeb94c92c1fc2ea7e57e6a99c357874a72c35dec78ad5517dfa051c574653e8b7031cb55245a969b88f963ae51bc61104b29cc342ff3524ab8dd80049a

  • SSDEEP

    3072:O+r5c07k6Oo+mNbXIPWPrfq4Ip5bYjS/fo+mNbXIPWPr:O85Rk6z+2XuWPrcNYcQ+2XuWPr

Malware Config

Targets

    • Target

      da7662fc079f089cefe7aebadf311efd_JaffaCakes118

    • Size

      128KB

    • MD5

      da7662fc079f089cefe7aebadf311efd

    • SHA1

      c169aeeafa21b785a030a0e2159e0e75bb263f47

    • SHA256

      18bac69ca9f61fa36e49d2fbdb4015dcdf9791d9125cc45d5970fde1d70dd801

    • SHA512

      0248afdeb94c92c1fc2ea7e57e6a99c357874a72c35dec78ad5517dfa051c574653e8b7031cb55245a969b88f963ae51bc61104b29cc342ff3524ab8dd80049a

    • SSDEEP

      3072:O+r5c07k6Oo+mNbXIPWPrfq4Ip5bYjS/fo+mNbXIPWPr:O85Rk6z+2XuWPrcNYcQ+2XuWPr

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks