Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e35b8b5b1062c2c63e3d1177c4851ed6_JaffaCakes118

  • Size

    59KB

  • Sample

    240406-1nkw2sbh61

  • MD5

    e35b8b5b1062c2c63e3d1177c4851ed6

  • SHA1

    0f27cce63def8c510564aa40d3cf7aedd329ae1c

  • SHA256

    37853b0280f64aeb6bec0801d3622d830aea503c77d657ac430b40c4d065fa33

  • SHA512

    c8fd365385bc449b3fb29ba8837ea9bc57f1b62f185066c02f3f01918be13f3bf7f8f99c6797ade758159e6e4a0cca3b72a8655e6e1743db0581cbb9c5840cb6

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFGocAX3LKew369lp2z3g:SKcR4mjD9r823FHKcR4mjD9r823Fq2

Malware Config

Targets

    • Target

      e35b8b5b1062c2c63e3d1177c4851ed6_JaffaCakes118

    • Size

      59KB

    • MD5

      e35b8b5b1062c2c63e3d1177c4851ed6

    • SHA1

      0f27cce63def8c510564aa40d3cf7aedd329ae1c

    • SHA256

      37853b0280f64aeb6bec0801d3622d830aea503c77d657ac430b40c4d065fa33

    • SHA512

      c8fd365385bc449b3fb29ba8837ea9bc57f1b62f185066c02f3f01918be13f3bf7f8f99c6797ade758159e6e4a0cca3b72a8655e6e1743db0581cbb9c5840cb6

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFGocAX3LKew369lp2z3g:SKcR4mjD9r823FHKcR4mjD9r823Fq2

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks