Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e35a1544ada6db5d5190e5a78724e484_JaffaCakes118

  • Size

    176KB

  • Sample

    240406-1lstwabh21

  • MD5

    e35a1544ada6db5d5190e5a78724e484

  • SHA1

    cc69d5e8250022ab9cc99bb2dea34883b6cd7015

  • SHA256

    3d305d581ac7cee5de3f16b9295767a4fbe8883ff48ba8cdd656686dc7427185

  • SHA512

    15ac1feb45bf81ad042b1e5e5fa421fb22b67301493e48f562083e20b66d1f6cd73ac0f3805b21fb05fa48361cc7917172f38590a60a68e6962f909bcc57a541

  • SSDEEP

    3072:iMsoZWsbmnn7egVNRiZumCPHRcP49PsesZzEIsxIGu5apWoWA3t2UNoTz:iMrZ5bm7eghiZumAHRcP49PsesZzEIsa

Score
10/10

Malware Config

Targets

    • Target

      e35a1544ada6db5d5190e5a78724e484_JaffaCakes118

    • Size

      176KB

    • MD5

      e35a1544ada6db5d5190e5a78724e484

    • SHA1

      cc69d5e8250022ab9cc99bb2dea34883b6cd7015

    • SHA256

      3d305d581ac7cee5de3f16b9295767a4fbe8883ff48ba8cdd656686dc7427185

    • SHA512

      15ac1feb45bf81ad042b1e5e5fa421fb22b67301493e48f562083e20b66d1f6cd73ac0f3805b21fb05fa48361cc7917172f38590a60a68e6962f909bcc57a541

    • SSDEEP

      3072:iMsoZWsbmnn7egVNRiZumCPHRcP49PsesZzEIsxIGu5apWoWA3t2UNoTz:iMrZ5bm7eghiZumAHRcP49PsesZzEIsa

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks